archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/sdktools/adduser/adduser.c

210 lines
5.3 KiB
Raw Normal View History

Add source files
4 years ago
  1. #include <stdio.h>
  2. #include <nt.h>
  3. #include <ntsam.h>
  4. #include <ntlsa.h>
  5. #include <ntrtl.h>
  6. #include <string.h>
  8. VOID AddUser(LPSTR, LPSTR);
  10. VOID
  11. __cdecl main(USHORT argc, PCHAR *argv)
  12. {
  14. if (argc != 3) {
  15. printf("Usage: AddUser <username> <password>\n");
  16. return;
  17. }
  19. AddUser(argv[1], argv[2]);
  21. return;
  23. }
  24. VOID
  25. AddUser(
  26. LPSTR UserName,
  27. LPSTR Password
  28. )
  29. {
  31. HANDLE ServerHandle = NULL;
  32. HANDLE DomainHandle = NULL;
  33. HANDLE UserHandle = NULL;
  34. LSA_HANDLE LsaHandle = NULL;
  35. ACCESS_MASK ServerAccessMask, DomainAccessMask;
  36. OBJECT_ATTRIBUTES ObjectAttributes;
  37. PPOLICY_ACCOUNT_DOMAIN_INFO PolicyAccountDomainInfo = NULL;
  38. STRING AccountNameAnsi;
  39. STRING AnsiPassword;
  40. UNICODE_STRING AccountName;
  41. UNICODE_STRING UnicodePassword;
  42. USER_SET_PASSWORD_INFORMATION pi;
  43. ULONG UserRid;
  44. NTSTATUS NtStatus;
  45. USHORT ControlInformation = USER_NORMAL_ACCOUNT;
  48. //
  49. // Get the Account domain SID from LSA
  50. //
  52. InitializeObjectAttributes( &ObjectAttributes, NULL, 0, 0, NULL );
  53. NtStatus = LsaOpenPolicy(NULL,
  54. &ObjectAttributes,
  55. POLICY_ALL_ACCESS,
  56. &LsaHandle);
  57. if (NtStatus == STATUS_ACCESS_DENIED) {
  58. printf("You must be logged on as admin to use this command\n");
  59. return;
  60. }
  61. else if (!NT_SUCCESS(NtStatus)) {
  62. //cleanup and exit
  63. printf("Couldn't open Lsa Policy database, rc = 0x%x\n", NtStatus);
  64. goto cleanupandexit;
  65. }
  67. NtStatus = LsaQueryInformationPolicy(LsaHandle,
  68. PolicyAccountDomainInformation,
  69. &PolicyAccountDomainInfo);
  70. if (!NT_SUCCESS(NtStatus)) {
  71. //cleanup and exit
  72. printf("Couldn't query Lsa Policy database, rc = 0x%x\n", NtStatus);
  73. goto cleanupandexit;
  74. }
  76. //
  77. // Connect to SAM
  78. //
  80. ServerAccessMask = SAM_SERVER_ALL_ACCESS;
  81. InitializeObjectAttributes( &ObjectAttributes, NULL, 0, 0, NULL );
  82. NtStatus = SamConnect(
  83. NULL, // ServerName (Local machine)
  84. &ServerHandle,
  85. ServerAccessMask,
  86. &ObjectAttributes
  87. );
  88. if (!NT_SUCCESS(NtStatus)) {
  89. //cleanup and exit
  90. printf("Couldn't connect to SAM, rc = 0x%x\n", NtStatus);
  91. goto cleanupandexit;
  92. }
  94. //
  95. // Open the account domain
  96. //
  98. DomainAccessMask = DOMAIN_ALL_ACCESS;
  99. NtStatus = SamOpenDomain(
  100. ServerHandle,
  101. DomainAccessMask,
  102. PolicyAccountDomainInfo->DomainSid,
  103. &DomainHandle
  104. );
  105. if (!NT_SUCCESS(NtStatus)) {
  106. //cleanup and exit
  107. printf("Couldn't open account domain, rc = 0x%x\n", NtStatus);
  108. goto cleanupandexit;
  109. }
  111. //
  112. // Create the User
  113. //
  115. RtlInitString( &AccountNameAnsi, UserName );
  116. NtStatus = RtlAnsiStringToUnicodeString( &AccountName, &AccountNameAnsi,
  117. TRUE );
  118. if (!NT_SUCCESS(NtStatus)) {
  119. //cleanup and exit
  120. printf("RtlAnsiStringToUnicodeString failed, rc = 0x%x\n", NtStatus);
  121. goto cleanupandexit;
  122. }
  124. UserRid = 0;
  125. UserHandle = NULL;
  126. NtStatus = SamCreateUserInDomain(
  127. DomainHandle,
  128. &AccountName,
  129. USER_ALL_ACCESS,
  130. &UserHandle,
  131. &UserRid
  132. );
  133. RtlFreeUnicodeString( &AccountName );
  134. if (NtStatus == STATUS_USER_EXISTS) {
  135. printf("User %s already exists\n", UserName);
  136. goto cleanupandexit;
  137. }
  138. else if (!NT_SUCCESS(NtStatus)) {
  139. //cleanup and exit
  140. printf("Couldn't create user, rc = 0x%x\n", NtStatus);
  141. goto cleanupandexit;
  142. }
  144. //
  145. // Create the cleartext UNICODE password and write it out.
  146. //
  148. RtlInitString(&AnsiPassword, Password);
  149. NtStatus = RtlAnsiStringToUnicodeString( &UnicodePassword, &AnsiPassword,
  150. TRUE );
  151. if (!NT_SUCCESS(NtStatus)) {
  152. //cleanup and exit
  153. printf("RtlAnsiStringToUnicodeString failed, rc = 0x%x\n", NtStatus);
  154. goto cleanupandexit;
  155. }
  157. pi.Password = UnicodePassword;
  158. pi.PasswordExpired = FALSE;
  160. NtStatus = SamSetInformationUser(
  161. UserHandle,
  162. UserSetPasswordInformation,
  163. &pi
  164. );
  166. RtlFreeUnicodeString(&UnicodePassword);
  168. if (!NT_SUCCESS(NtStatus)) {
  169. //cleanup and exit
  170. printf("Couldn't set password for user, rc = 0x%x\n", NtStatus);
  171. goto cleanupandexit;
  172. }
  174. //
  175. // Now make the user account active
  176. //
  178. NtStatus = SamSetInformationUser(
  179. UserHandle,
  180. UserControlInformation,
  181. &ControlInformation
  182. );
  184. if (!NT_SUCCESS(NtStatus)) {
  185. //cleanup and exit
  186. printf("Couldn't activate the user account, rc = 0x%x\n", NtStatus);
  187. goto cleanupandexit;
  188. }
  190. cleanupandexit:
  192. if (PolicyAccountDomainInfo) {
  193. LsaFreeMemory(PolicyAccountDomainInfo);
  194. }
  195. if (UserHandle) {
  196. NtClose(UserHandle);
  197. }
  198. if (DomainHandle) {
  199. NtClose(DomainHandle);
  200. }
  201. if (ServerHandle) {
  202. NtClose(ServerHandle);
  203. }
  204. if (LsaHandle) {
  205. NtClose(LsaHandle);
  206. }
  208. return;
  210. }