Wikipedia

Graphical identification and authentication: Difference between revisions

Browse history interactively
← Previous edit
Content deleted Content added
VisualWikitext
Ajm 80386 (talk | contribs)
40 edits
Updated redirecting URL in external links+refs and added archive URL. But I don't think this is sufficient evidence for the claims for which it's cited. It states that GINA DLLs are ignored in Vista, but says nothing about Windows 7/8/8.1/10/11. The URL refers to Win32, so we don't know how much of it applies to 64-bit Windows. And there are no sources cited for GINA being used in XP and 2000. As for initial processes e.g. the shell, these are not mentioned on the page.
 
(17 intermediate revisions by 15 users not shown)
Line 1:
{{refimprove|date=March 2017}}
The '''graphical identification and authentication''' ('''GINA)''') is a component of [[Windows NT 3.51]], [[Windows NT 4.0]],<ref>{{Cite web |title=Vulnerability Report For Microsoft Windows NT 4.0 Terminal Server GINA {{!}} CoreLabs Advisories |url=https://www.coresecurity.com/core-labs/advisories/vulnerability-report-for-microsoft-windows-nt-40-terminal |access-date=2022-11-08 |website=www.coresecurity.com}}</ref> [[Windows 2000]], [[Windows XP]] and [[Windows Server 2003]]<ref name=":0">{{Cite web|url = httphttps://technet.microsoft.com/en-us/library/dn169014%28v=ws.10%29.aspx|title = Credentials Management in Windows Authentication|date = 11 April 2013|accessdate = |website = [[Microsoft TechNet|TechNet]]|publisher = [[Microsoft]]|last = |first = }}</ref> that provides secure authentication and interactive [[Logging (computer security)|logon]] services. GINA is a replaceable [[dynamically linked library]] that is loaded early in the boot process in the context of [[Winlogon]] when the machine is started. It is responsible for handling the [[secure attention key|secure attention sequence]], typically [[Control-Alt-Delete]], and interacting with the user when this sequence is received. GINA is also responsible for starting initial processes for a user (such as the [[Windows Shell]]) when they first log on.<ref name=":1">{{Cite web | url=https://learn.microsoft.com/en-gb/windows/win32/secauthn/winlogon-and-gina?redirectedfrom=MSDN | title=Winlogon and GINA | archive-url=https://web.archive.org/web/20131001231514/http://msdn.microsoft.com:80/en-us/library/aa380543.aspx |title archive-date=2013-10-01 Winlogon and GINA|date url-status=live | accessdate = 4 December 2014 | website = [[MSDN]] |publisher = [[Microsoft]]|last = |first = }}</ref> GINA is discontinued in [[Windows Vista]].<ref name=":1" />
 
==Overview==
[[File:Xp windows security.png|thumb|250px|right|"Windows Security" dialog in Windows XP: GINA is responsible for bringing up this dialog when [[Ctrl+Alt+Delete]] key combination is pressed]]A default GINA library, MSGINA.DLL, is provided by Microsoft as part of the operating system, and offers the following features:
*Authentication against Windows [[Windows Server ___domain|___domain]] servers with a supplied user name/password combination.
*Displaying of a [[legal notice]] to the user prior to presenting the logon prompt.
*Automatic Logon, allowing for a user name and password to be stored and used in place of an interactive logon prompt. Automatic logon can also be configured to execute only a certain number of times before reverting to interactive logon. In older versions of [[Windows NT]], the password could only be stored in plain text in the registry; support for using the [[Local Security Authority Subsystem Service|Local Security Authority's]] private storage capabilities was introduced in Windows NT 4.0 Workstation Service Pack 3 and Windows NT Server 3.51.
*"Security Options" dialog when the user is logged on, which provides options to shut down, log off, change the password, start the [[Windows Task Manager|Task Manager]], and lock the workstation.
Line 15:
When the Winlogon process starts, it compares its version number to that which is supported by the loaded GINA library. If the GINA library is of a higher version than Winlogon, Windows will not boot. This is done because a GINA library written for a given version of Winlogon will expect a certain set of API calls to be provided by Winlogon.
 
Support for replaceable GINA DLLs was introduced with Windows NT Server 3.51 and Windows NT Workstation 4.0 SP3. Successive versions of Windows have introduced additional functionality into Winlogon, resulting in additional functionality that can be implemented by a replacement GINA. [[Windows 2000]], for example, introduced support for displaying status messages (including verbose messages that can be turned on through [[Group Policy]]) about the current state to the user (e.g. "Applying computer settings..."), and starting applications in the user's context; this facilitates restarting [[Windows Explorer]] automatically if it crashes, as well as starting the Task Manager. [[Windows XP]] introduced support for [[Fast User Switching]], [[Remote Desktop Protocol|Remote Desktop]] and a more interactive, simplified and user-friendly full-screen logon.
 
==End of life==
Line 29:
 
==External links==
*[{{cite web | url=https://learn.microsoft.com/en-gb/windows/win32/secauthn/winlogon-and-gina?redirectedfrom=MSDN | title=Winlogon and GINA | archive-url=https://web.archive.org/web/20131001231514/http://msdn.microsoft.com:80/en-us/library/aa380543.aspx Winlogon| andarchive-date=2013-10-01 GINA],| url-status=live}} developerDeveloper information on how the login components interact
*[http://msdn.microsoft.com/en-us/magazine/cc163803.aspx Customizing GINA Part 1], Developer tutorial for writing a custom GINA.
*[http://msdn.microsoft.com/en-us/magazine/cc163786.aspx Customizing GINA Part 2], Developer tutorial for writing a custom GINA.
*[http://pgina.org pGina], Open Source Windows Authentication
 
{{Windows Components}}
 
[[Category:Microsoft Windows security technology]]
Retrieved from "https://en.wikipedia.org/wiki/Graphical_identification_and_authentication"