archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/admin/admt/workobj/usercopy.hpp

354 lines
14 KiB
Raw Normal View History

Add source files
4 years ago
  1. #ifndef __USERCOPY_HPP__
  2. #define __USERCOPY_HPP__
  3. //#pragma title("usercopy.hpp- class definitions for usercopy")
  4. /*
  5. ================================================================================
  7. (c) Copyright 1995-1998, Mission Critical Software, Inc., All Rights Reserved
  8. Proprietary and confidential to Mission Critical Software, Inc.
  10. Program - usercopy
  11. Class - LAN Manager Utilities
  12. Author - Christy Boles
  13. Created - 09/04/97
  14. Description- class definitions to allow usercopy to process subsets of accounts.
  15. The list of accounts will be generated by the GUI, and will consist
  16. of a TNodeList of TAcctNodes. Users will be added from the front of
  17. the list, and groups will be added at the end.
  20. Updates - 01/30/98 CAB Added strong password generation
  23. ================================================================================
  24. */
  26. #include <lmcons.h>
  28. #include "TNode.hpp"
  29. #include <share.h> // for _SH_DENYNO
  30. #include "EaLen.hpp"
  31. #include "Common.hpp"
  32. #include "Err.hpp"
  33. #include "UString.hpp"
  34. #include "CommaLog.hpp"
  35. #include "TARNode.hpp"
  36. #include "WorkObj.h"
  37. #include "ProcExts.h"
  38. //#import "\bin\DBManager.tlb" no_namespace, named_guids
  39. //#import "\bin\McsDctWorkerObjects.tlb"
  40. #import "DBMgr.tlb" no_namespace, named_guids
  41. #import "WorkObj.tlb"
  43. #define AR_BUFSIZE ((size_t)16000)
  44. #define AR_NUM_IN_BUF 5000
  46. #define F_REPLACE 0x00000001 // replace account info
  47. #define F_GROUP 0x00000002 // copy global groups
  48. #define F_LGROUP 0x00000004 // copy local groups
  49. #define F_USERS 0x00000008 // copy users
  50. #define F_DISABLE_ALL 0x00000010 // disable all accounts
  51. #define F_DISABLE_SPECIAL 0x00000020 // disable Account Ops, Backup Ops, Administrators, Domain Admins
  52. #define F_STRONGPW_ALL 0x00000040 // generate strong passwords for all accounts
  53. #define F_STRONGPW_SPECIAL 0x00000080 // generate strong passwords for Account Ops, Backup Ops, Admins, and Domain Admins
  54. #define F_MACHINE 0x00000100 // copy computer accounts
  55. #define F_REMOVE_OLD_MEMBERS 0x00000200 // remove old members from replaced groups
  56. #define F_DISABLESOURCE 0x00000400 // disable copied user accounts on source domain
  57. #define F_AddToSrcGroupLocal 0x00000800 // indicates that the add-to group is on the target domain
  58. #define F_AddToGroupLocal 0x00001000 // add to group is a local group
  59. #define F_INTERACT 0x00002000 // use command-line parms to initiate interactive gui session
  60. #define F_WARN_FULLNAME 0x00004000 // warn before replacing accounts w/different fullname
  61. #define F_WARN_COMMENT 0x00008000 // warn before replacing accounts w/different comment
  62. #define F_CopyPasswords 0x00010000 // copy passwords
  63. #define F_RevokeOldRights 0x00020000 // removes old user rights from copied accounts
  64. #define F_AddSidHistory 0x00040000 // Add SID of source account to the SID history of the target account.
  65. #define F_TranslateProfiles 0x00080000 // Translate roaming profiles
  66. #define F_OUS 0x00100000 // Process the organizational units.
  67. #define F_COMPUTERS 0x00200000 // Process the computer accounts in Acct replication
  68. #define F_COPY_CONT_CONTENT 0x00400000 // Copy the container contents along with the container when copying accounts.
  69. #define F_COPY_MIGRATED_ACCT 0x00800000 // When expanding containers/membership include accounts that have already been migrated.
  70. #define F_MOVE_REPLACED_ACCT 0x01000000 // move a replaces account to the user-specified OU.
  72. #define AR_AccountComputer (0x80000000)
  73. #define AR_AccountComputerPdc (0x40000000)
  76. #define ADMINISTRATORS 1
  77. #define ACCOUNT_OPERATORS 2
  78. #define BACKUP_OPERATORS 3
  79. #define DOMAIN_ADMINS 4
  80. #define CREATOR_OWNER 5
  81. #define DOMAIN_USERS 6
  82. #define DOMAIN_CONTROLLERS 7
  83. #define DOMAIN_COMPUTERS 8
  85. struct AccountStats
  86. {
  87. long users;
  88. long globals;
  89. long locals;
  90. long computers;
  91. long generic;
  92. };
  94. class TANode:public TNode
  95. {
  96. BOOL bMarked;
  97. PSID pSid;
  98. WCHAR name[LEN_Account];
  100. public:
  101. TANode() { name[0] = 0; bMarked = FALSE; pSid = NULL;}
  102. TANode(WCHAR const * n)
  103. {
  104. safecopy(name,n);
  105. bMarked = FALSE;
  106. pSid = NULL;
  107. }
  108. ~TANode()
  109. {
  110. if ( pSid )
  111. delete pSid;
  112. }
  113. BOOL Marked() { return bMarked; }
  114. void Mark() { bMarked = TRUE; }
  115. void SetSid(PSID p) { pSid = p; }
  116. void SetName(WCHAR const * n){ safecopy(name,n); }
  117. WCHAR * GetName() { return name; }
  118. PSID GetSid() { return pSid;}
  119. };
  121. // Password generation service
  122. #define PWGEN_MIN_LENGTH 8 // enforced minimum password length
  123. #define PWGEN_MAX_LENGTH 14 // enforced maximum password length
  125. struct EaPwdFilterInfo
  126. {
  127. DWORD bEnforce;
  128. DWORD bAllowName;
  129. DWORD minLower;
  130. DWORD minUpper;
  131. DWORD minDigits;
  132. DWORD minSpecial;
  133. DWORD maxConsecutiveAlpha;
  134. };
  138. struct Options
  139. {
  140. WCHAR srcComp[LEN_Account]; // source computername
  141. WCHAR srcDomain[LEN_Domain+1];
  142. WCHAR tgtDomain[LEN_Domain+1];
  143. WCHAR srcDomainDns[LEN_Path];
  144. WCHAR tgtDomainDns[LEN_Path];
  145. WCHAR tgtComp[LEN_Account]; // target computername
  146. PSID srcSid;
  147. PSID tgtSid;
  148. DWORD srcDomainVer;
  149. DWORD tgtDomainVer;
  150. WCHAR prefix[UNLEN]; // prefix for added users
  151. WCHAR suffix[UNLEN]; // suffix for added users
  152. WCHAR globalPrefix[UNLEN];
  153. WCHAR globalSuffix[UNLEN];
  154. WCHAR addToGroup[GNLEN+1]; // optional group name to add new users to
  155. WCHAR addToGroupSource[GNLEN+1]; // optional group name to add source users to
  156. WCHAR logFile[MAX_PATH+1];
  157. EaPwdFilterInfo policyInfo;
  158. DWORD minPwdLength;
  159. CommaDelimitedLog passwordLog;
  160. DWORD flags; // operation flags
  161. BOOL nochange;
  162. WCHAR authUser[UNLEN+1]; //User name for source authentication
  163. WCHAR authPassword[UNLEN+1]; //Password for Authentication.
  164. WCHAR authDomain[LEN_Domain+1]; // Domain for the user passed for authentication
  165. HANDLE dsBindHandle; // Handle to the directory service. Should be init by DsBind.
  166. WCHAR srcNamingContext[LEN_Path]; // Naming context for the Adsi path
  167. WCHAR tgtNamingContext[LEN_Path]; // Naming context for the Target domain
  168. WCHAR tgtOUPath[LEN_Path]; // path for the OU container that is to be used to create objects in
  169. BOOL expandContainers; // Whether or not we want to expand the containers.
  170. BOOL expandMemberOf;
  171. BOOL fixMembership;
  172. IIManageDB * pDb;
  173. BOOL bUndo;
  174. BOOL bSameForest;
  175. long lActionID;
  176. long lUndoActionID;
  177. MCSDCTWORKEROBJECTSLib::IStatusObjPtr pStatus;
  178. WCHAR sDomUsers[UNLEN+1]; // Name of the domain users group in the source domain
  179. _bstr_t sExcUserProps; // user properties to exclude from migration
  180. _bstr_t sExcGroupProps; // group properties to exclude from migration
  181. _bstr_t sExcCmpProps; // computer properties to exclude from migration
  182. BOOL bExcludeProps;
  183. _bstr_t sWizard;
  186. Options() {
  187. srcComp[0] = 0;
  188. srcDomain[0] = 0;
  189. tgtDomain[0] = 0;
  190. srcDomainDns[0] = 0;
  191. tgtDomainDns[0] = 0;
  192. tgtComp[0] = 0;
  193. prefix[0] = 0;
  194. suffix[0] = 0;
  195. globalPrefix[0] = 0;
  196. globalSuffix[0] = 0;
  197. addToGroup[0] = 0;
  198. addToGroupSource[0] = 0;
  199. logFile[0] = 0;
  200. minPwdLength = 0;
  201. flags = 0;
  202. nochange = TRUE;
  203. authUser[0] = 0;
  204. authPassword[0] = 0;
  205. authDomain[0] = 0;
  206. srcNamingContext[0] = 0;
  207. tgtNamingContext[0] = 0;
  208. tgtOUPath[0] = 0;
  209. expandContainers = FALSE;
  210. fixMembership = TRUE;
  211. pDb = NULL;
  212. CoCreateInstance(CLSID_IManageDB,NULL,CLSCTX_ALL,IID_IIManageDB,(void**)&pDb);
  213. bUndo = FALSE;
  214. srcDomainVer = -1;
  215. tgtDomainVer = -1;
  216. srcSid = NULL;
  217. tgtSid = NULL;
  218. lUndoActionID = 0;
  219. pStatus = NULL;
  220. bSameForest = FALSE;
  221. sDomUsers[0] = 0;
  222. bExcludeProps = FALSE;
  223. }
  224. ~Options()
  225. {
  226. if( pDb )
  227. {
  228. pDb->Release();
  229. }
  230. if ( srcSid )
  231. FreeSid(srcSid);
  232. if ( tgtSid )
  233. FreeSid(tgtSid);
  234. }
  235. };
  238. typedef void ProgressFn(WCHAR const * mesg);
  242. int
  243. UserCopy(
  244. Options * options, // in - options
  245. TNodeListSortable * acctlist, // in - list of accounts to process
  246. ProgressFn * progress, // in - function called to log current progress
  247. TError & error, // in - TError to write messages to
  248. IStatusObj * pStatus, // in -status object to support cancellation
  249. void fn (void ), // in - window update function
  250. CProcessExtensions * pExts // in - pointer to extensions
  251. );
  254. int
  255. UserRename(
  256. Options * options, // in -options
  257. TNodeListSortable * acctlist, // in -list of accounts to process
  258. ProgressFn * progress, // in -window to write progress messages to
  259. TError & error, // in -window to write error messages to
  260. IStatusObj * pStatus, // in -status object to support cancellation
  261. void WindowUpdate (void ) // in - window update function
  262. );
  264. DWORD
  265. CopyServerName(
  266. WCHAR * uncServ ,// out-UNC server name
  267. TCHAR const * server // in -\\server or domain name
  268. );
  271. bool AddSidHistory(
  272. const Options * pOptions,
  273. const WCHAR * strSrcPrincipal,
  274. const WCHAR * strDestPrincipal,
  275. IStatusObj * pStatus = NULL,
  276. BOOL isFatal = TRUE
  277. );
  279. bool BindToDS(
  280. WCHAR * strDestDC,
  281. Options * pOpt
  282. );
  284. bool AddToOU (
  285. Options * options, // in -options
  286. TNodeListSortable * acctlist // in -list of accounts to process
  287. );
  289. void MakeFullyQualifiedAdsPath(
  290. WCHAR * sPath, //out- Fully qulified LDAP path to the object
  291. DWORD nPathLen, //in - MAX size, in characters, of the sPath buffer
  292. WCHAR * sSubPath, //in- LDAP subpath of the object
  293. WCHAR * tgtDomain, //in- Domain name where object exists.
  294. WCHAR * sDN //in- Deafault naming context for the Domain
  295. );
  297. BOOL GetDnsAndNetbiosFromName(WCHAR * name,WCHAR * netBios, WCHAR * dns);
  299. void FillupNamingContext(Options * options);
  301. bool IsAccountMigrated(
  302. TAcctReplNode * pNode, //in -Account node that contains the Account info
  303. Options * pOptions, //in -Options as specified by the user.
  304. IIManageDBPtr pDb, //in -Pointer to DB manager. We dont want to create this object for every account we process
  305. WCHAR * sTgtSam //in,out - Name of the target object that was copied if any.
  306. );
  308. bool CheckifAccountExists(
  309. Options const* options, //in-Options as set by the user
  310. WCHAR * acctName //in-Name of the account to look for
  311. );
  313. bool CallExtensions(
  314. CProcessExtensions * pExt, // in - Extension handler.
  315. Options * options, // in -options
  316. TNodeListSortable * acctlist, //in -Accounts to be copied.
  317. IStatusObj * pStatus, // in -status object to support cancellation
  318. ProgressFn * progress //in- Progress function.
  319. );
  321. void
  322. CopyGlobalGroupMembers(
  323. Options const * options ,// in -options
  324. TAcctReplNode * acct ,// in -account to copy
  325. TNodeListSortable * acctlist ,// in -list of accounts being copied
  326. void WindowUpdate (void ) // in - window update function
  327. );
  329. void
  330. CopyLocalGroupMembers(
  331. Options const * options ,// in -options
  332. TAcctReplNode * acct ,// in -account to copy
  333. TNodeListSortable * acctlist ,// in -list of accounts being copied
  334. void WindowUpdate (void ) // in - window update function
  335. );
  337. HRESULT
  338. CopySidHistoryProperty(
  339. Options * pOptions,
  340. TAcctReplNode * pNode,
  341. IStatusObj * pStatus
  342. );
  344. HRESULT
  345. GetRidPoolAllocator(
  346. Options * pOptions
  347. );
  349. void Mark( _bstr_t sMark, _bstr_t sObj);
  350. DWORD GetName(PSID pObjectSID, WCHAR * sNameAccount, WCHAR * sDomain);
  352. typedef HRESULT (CALLBACK * ADSGETOBJECT)(LPWSTR, REFIID, void**);
  353. extern ADSGETOBJECT ADsGetObject;
  355. #endif //__USERCOPY_HPP__