IanN1990

Active Directory - Secondary Secure Connection

6 posts in this topic

Hi, 

I had an idea last night but it requires information about how this UDF works.

 

I am part of second-line support and in charge of improving internal processes. One of the relationships i am currently looking at is the interaction between first-line and second-line. First-Line has access to Active Directory but only read-only and security will never approve write access due to how dangerous it could be.

 

The problem is a lot of non-critical requests are being passed to second-line which could be done by first line. 

Example - Updating someones printer pass details, assigning visualized freeware applications etc

 

My Current Idea

I have written a application, that when loads presents with a list of freeware applications or printerpass. When first-line selects a user + package and clicks go it generates a file on my back-up vitalized machine (as both first-line + backup are linked by network) which sees the file and processes it (with my AD account)

 

My New Idea is

In the UDF it says you can connect using details, though i would need to figure out the nitty / gritty of storing my information while making it impossible to read outside of the script, would anything else on that system gain that ability or is it limited only to that autoit process ?

Share this post


Link to post
Share on other sites



If you provide credentials in an AutoIt script then it is quite easy for people to extract this information.
I would stick with your current idea.


My UDFs and Tutorials:

Spoiler

UDFs:
Active Directory (NEW 2017-04-18 - Version 1.4.8.0) - Download - General Help & Support - Example Scripts - Wiki
OutlookEX (NEW 2017-02-27 - Version 1.3.1.0) - Download - General Help & Support - Example Scripts - Wiki
ExcelChart (2015-04-01 - Version 0.4.0.0) - Download - General Help & Support - Example Scripts
Excel - Example Scripts - Wiki
Word - Wiki
PowerPoint (2015-06-06 - Version 0.0.5.0) - Download - General Help & Support

Tutorials:
ADO - Wiki

 

Share this post


Link to post
Share on other sites

#3 ·  Posted (edited)

Hi, 

Though i admit at the time of writing this point i was aware of that but was confident i could protect it in some way. So i was looking more at the AD aspect of secure connection not over-riding any current connection they might have. Saying that i have been knocked down a peg or two in that aspect password aspect. 

Though, i did find this. Would this protect the password within the code?

 

 

Edited by IanN1990

Share this post


Link to post
Share on other sites

It is my understanding that you can only make it harder to gain access to the stored credentials but at a point in time the script needs to be interpreted by AutoIt. That's when the full source code needs to be unencrypted.
So: There is no 100% secure way to store your credentials.


My UDFs and Tutorials:

Spoiler

UDFs:
Active Directory (NEW 2017-04-18 - Version 1.4.8.0) - Download - General Help & Support - Example Scripts - Wiki
OutlookEX (NEW 2017-02-27 - Version 1.3.1.0) - Download - General Help & Support - Example Scripts - Wiki
ExcelChart (2015-04-01 - Version 0.4.0.0) - Download - General Help & Support - Example Scripts
Excel - Example Scripts - Wiki
Word - Wiki
PowerPoint (2015-06-06 - Version 0.0.5.0) - Download - General Help & Support

Tutorials:
ADO - Wiki

 

Share this post


Link to post
Share on other sites

#5 ·  Posted (edited)

So are you referring to when the variable is needed to run it is decrypted or when the script is loaded it is decrypted. In other words the data is "safe" (i use loosely) until it is run at which point someone would be able to read memory for the decrypted information?

Edited by IanN1990

Share this post


Link to post
Share on other sites

I do not know CodeCrypter. But as I understand it your code is only save if you need to enter a password (or whatever) that is stored outside the script (your head etc.).
Means: You would need to enter this information every time you run your script.


My UDFs and Tutorials:

Spoiler

UDFs:
Active Directory (NEW 2017-04-18 - Version 1.4.8.0) - Download - General Help & Support - Example Scripts - Wiki
OutlookEX (NEW 2017-02-27 - Version 1.3.1.0) - Download - General Help & Support - Example Scripts - Wiki
ExcelChart (2015-04-01 - Version 0.4.0.0) - Download - General Help & Support - Example Scripts
Excel - Example Scripts - Wiki
Word - Wiki
PowerPoint (2015-06-06 - Version 0.0.5.0) - Download - General Help & Support

Tutorials:
ADO - Wiki

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now