CN109818975A - A kind of method that remote auto obtains and manages windows server account number - Google Patents
A kind of method that remote auto obtains and manages windows server account number Download PDFInfo
- Publication number
- CN109818975A CN109818975A CN201910196529.8A CN201910196529A CN109818975A CN 109818975 A CN109818975 A CN 109818975A CN 201910196529 A CN201910196529 A CN 201910196529A CN 109818975 A CN109818975 A CN 109818975A
- Authority
- CN
- China
- Prior art keywords
- windows server
- server
- account number
- windows
- target
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Computer And Data Communications (AREA)
Abstract
The present invention relates to information security fields, a kind of method that remote auto obtains and manages windows server account number is provided, method includes: remotely to be connected by the franchise account number on target windows server, the automatic account number obtained on target windows server of batch, the information such as account number cipher, login are detected, related data is all returned into local server;It manages the account number obtained from target windows server concentratedly, batch targetedly is carried out to account number and changes the sequence of operations such as close, addition or deletion;Change the corresponding password of close setting to account number batch according to demand to form, including Password Length, complexity and cryptographic validity etc.;The account number on windows server is obtained automatically and is concentrated, is targetedly managed collectively to realize, finally improves the safety of windows server and entire environment.
Description
Technical field
The invention belongs to information security fields, especially realize the account to all windows servers in network environment
Number remote auto acquisition and manage.
Background technique
With the continuous development of network technology, mature, more and more safety problems emerge, only only simple to divide
It has been no longer complies with current safety requirements with windows server resource, the account number on windows server assets has been carried out
Unified management.It just imagines if the password of the account number in a local area network in some windows server is complicated journey
Spend very high, but the password of some account number is special simple so that can be usurped easily, once then this account number quilt
It breaks through, entire windows server is also just no longer safe;And in this local area network, with the presence of a windows server wind
Danger, then whole network is risky.Perhaps just as this account number, causes the resource of whole region to be lost, is stolen
With, be even damaged.
Summary of the invention
A kind of method for being obtained the purpose of the present invention is to provide remote auto and managing windows server account number, purport
It is account number substantial amounts, at random in the environment for solving to possess a large amount of windows servers at one, and be wherein no lack of in the presence of pair
Server causes the account number of risk, and there is no combining above-mentioned technical proposal to carry out remote auto acquisition and be managed collectively, leads
The problem of causing windows server security coefficient to reduce.
The purpose of the present invention is achieved through the following technical solutions: a kind of remote auto obtains and manages windows
The method of server account number, method includes the following steps:
(1) it obtains the franchise account number of target windows server and detects the system type of target windows server.
(2) local server long-range linking objective windows server is passed through when being locally linux server
The long-range linking objective windows server of rdesktop;When being locally windows server, pass through the long-range linking objective of mstsc
Windows server.
(3) bat script, the automatic all account numbers for obtaining target windows server are executed in target windows server
And account number relevant information.
(4) target windows server returns data to local server, passes through magnetic when being locally windows server
Disk mapping;Locally when being linux server according to the system type of target windows server there are two types of mode returned data,
First is that Disk Mapping, second is that calling ie by socket in target windows server, being returned from url parameter.
(5) when local is linux server, the data of return is ordered by " dos2unix " and switch to dos file
Linux file, and utf-8 data encoding is carried out, then execute step (6);When being locally windows server, directly execute
Step (6).
(6) according to treated data, pointedly the account number of target windows server is managed, in target
Account number batch is executed on windows server changes close, increase or the operation of Dele account.Account number changes close, is meeting target
It, can be with customized Password Length, complexity and validity period on the basis of windwos server password rule.
Further, the franchise account number of target windows server is obtained in the step 1, guarantees that bat script is executing
It will not be terminated in the process because of rights concerns by target windows server;Target windows type of server is detected, it is existing
It common are windows server 2000, windows server 2003, windows server 2008, windows
server 2012、windows server 2016。
Further, it is remotely connected by rdesktop when being locally linux server in the step 2, and
And the bat script length generated in rdesktop is limited by rdesktop.
Further, in the step 3, bat script obtains target windows service by the way that " net user " order is automatic
All account numbers and account number relevant information of device, net user is more succinct with respect to for other orders, is conducive to script execution.
Further, in the step 4 when it is local be linux server when two kinds of returned datas method, be because
Caused by the systematical difference of windows server.windows server 2000,windows server2003,windows
For server 2008 by Disk Mapping come returned data, windows server 2012 and windows server 2016 are logical
It crosses socket and calls ie, the returned data from url.
Further, in the step 5 processing returns to data, when data echo plex mode is Disk Mapping, local linux
Server is different with the document No. of target windows server, needs dos file switching to linux file;Data format is
Chinese plus space add Chinese plus line feed file content first to be carried out utf-8 data encoding, then remove line feed after file conversion
Space finally intercepts Chinese character.
Further, in the step 6, the password of setting is on the basis for meeting target windows server password rule
On may include additional character, such as!, *, _ etc. and letter and number.Account number be more than cryptographic validity, to account number change it is close or
Person deletes.
It obtains the beneficial effects of the present invention are: the present invention provides a kind of remote auto and manages windows server account number
Method, remotely connected by the franchise account number on windows server, batch is automatic to be obtained on windows server
Account number, related data is all returned to local server by detection account number cipher, the information such as login;Centralized management from
The account number obtained on windows server targetedly carries out batch to account number and changes a series of behaviour such as close, addition or deletion
Make;Change the corresponding password of close setting to account number batch according to demand to form, including Password Length, complexity and cryptographic validity
Deng;The account number on windows server is obtained automatically and is concentrated, is targetedly managed collectively to realize, most
The safety of windows server and entire environment is improved eventually.
Detailed description of the invention
Fig. 1 is that local server remotely connects and the specific implementation logic chart of windows server returned data;
Fig. 2 is the logic chart for obtaining and managing windows server account number automatically.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, with reference to the accompanying drawings and embodiments, right
The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and
It is not used in the restriction present invention.
The method that a kind of remote auto provided by the invention obtains and manages windows server account number, specific implementation step
It is rapid as follows:
(1) it obtains the franchise account number of target windows server and detects the system type of target windows server.
(2) local server long-range linking objective windows server is passed through when being locally linux server
The long-range linking objective windows server of rdesktop;When being locally windows server, pass through the long-range linking objective of mstsc
Windows server.
(3) bat script, the automatic all account numbers for obtaining target windows server are executed in target windows server
And account number relevant information.
(4) target windows server returns data to local server, passes through magnetic when being locally windows server
Disk mapping;Locally when being linux server according to the system type of target windows server there are two types of mode returned data,
First is that Disk Mapping, second is that calling ie by socket in target windows server, being returned from url parameter.
(5) when local is linux server, the data of return is ordered by " dos2unix " and switch to dos file
Linux file, and utf-8 data encoding is carried out, then execute step (6);When being locally windows server, directly execute
Step (6).
(6) according to treated data, pointedly the account number of target windows server is managed, in target
Account number batch is executed on windows server changes close, increase or the operation of Dele account.Account number changes close, is meeting target
It, can be with customized Password Length, complexity and validity period on the basis of windwos server password rule.
Further, the franchise account number of target windows server is obtained in the step 1, guarantees that bat script is executing
It will not be terminated in the process because of rights concerns by target windows server;Target windows type of server is detected, it is existing
It common are windows server 2000, windows server 2003, windows server 2008, windows
server 2012、windows server 2016。
Further, it is remotely connected by rdesktop when being locally linux server in the step 2, and
And the bat script length generated in rdesktop is limited by rdesktop.
Further, in the step 3, bat script obtains target windows service by the way that " net user " order is automatic
All account numbers and account number relevant information of device, net user is more succinct with respect to for other orders, is conducive to script execution.
Further, in the step 4 when it is local be linux server when two kinds of returned datas method, be because
Caused by the systematical difference of windows server.windows server 2000,windows server2003,windows
For server 2008 by Disk Mapping come returned data, windows server 2012 and windows server 2016 are logical
It crosses socket and calls ie, the returned data from url.
Further, in the step 5 processing returns to data, when data echo plex mode is Disk Mapping, local linux
Server is different with the document No. of target windows server, needs dos file switching to linux file;Data format is
Chinese plus space add Chinese plus line feed file content first to be carried out utf-8 data encoding, then remove line feed after file conversion
Space finally intercepts Chinese character.
Further, in the step 6, the password of setting is on the basis for meeting target windows server password rule
On may include additional character, such as!, *, _ etc. and letter and number.Account number be more than cryptographic validity, to account number change it is close or
Person deletes.
It is illustrated below:
Example 1: local windows server A, target are windows server B, and B is the server just added, privilege
Account number is C.It is that B batch adds account number and password is arranged that A, which obtains C then to pass through the above method,.
Example 2: local linux server A, target windows server B, the operating system of B are windows server
2003, franchise account number is C, has many idle account numbers on B, is not logged on for a long time.A obtains C and passes through the above method then as B batches
Measure Dele account.
Detailed description to example 1, A obtain the franchise account number C of B, remotely connect B by mstsc, execute bat script, pass through
Disk Mapping returns data to A, and A judges do not have account number in B according to data, and continuing to execute bat script is B batch addition account number
And the password of some strength is set.After completion, so that it may access B using the account number of these additions.So not by the method
Only B batch is added to account and is provided with the password of some strength, to improve the safety of B.
Embodiment:
It is the logic chart of the specific implementation of linking objective windows server and returned data such as Fig. 1.Local server
There are linux or windwos, linux remotely to connect windows server 2000, windows by rdesktop
Simultaneously Disk Mapping is arranged in server 2003, windows server 2008, remotely connects windows by rdesktop
Server 2012, windows server 2016 are arranged socket and construct url, call ie, are returned to data by url parameter
To local linux server;Local windows server remotely connects windows server by mstsc, is reflected by disk
Penetrate returned data.
It is the logic chart that the method is integrally realized such as Fig. 2, local server is remotely connected by rdesktop or mstsc
Target windows server is connect, target windows server returns data to local server, and processing data are then right
Windows account number be managed collectively, deleted in batches, added and changed it is close, realization the account number of windows server is obtained automatically
It takes and manages.
Assuming that there is local linux server A, target is windows server B, and system is windows server
2012, B franchise account number is C, has a large amount of account number, and the account number very weak there are some passwords on B, is easy to be broken, to B
It will cause safety problem, and have a large amount of important information on B.
It is so present change in batches close, the franchise account number C of the acquisition of A first B, detection B by account number of the above method to B
System be windows server 2012, remotely connect B using franchise account number C secondly by rdesktop, then execute
Bat script simultaneously calls ie, returns data to A by socket, then carries out the operation such as encoding to data, finally be arranged high-strength
The password of degree change in batches to account number close.After completion, the account number cipher before B cannot log on to B, only pass through
The new password of setting could log in B.It thereby realizes and the account number remote auto in B is obtained and managed, relieve in B and exist
Security risk, improve the safety of B and integrated environment.
It is to be understood that the content of present invention and specific embodiment are intended to prove the reality of technical solution provided by the present invention
Border application, should not be construed as limiting the scope of the present invention.Within the spirit of the invention and the scope of protection of the claims,
To any modifications and changes that the present invention makes, protection scope of the present invention is both fallen within.
Claims (7)
1. a kind of method that remote auto obtains and manages windows server account number, which is characterized in that this method includes following
Step:
(1) it obtains the franchise account number of target windows server and detects the system type of target windows server.
(2) local server long-range linking objective windows server is passed through into rdesktop when being locally linux server
Long-range linking objective windows server;When being locally windows server, pass through the long-range linking objective windows of mstsc
Server.
(3) execute bat script in target windows server, the automatic all account numbers for obtaining target windows server and
Account number relevant information.
(4) target windows server returns data to local server, is reflected when being locally windows server by disk
It penetrates;According to the system type of target windows server, there are two types of mode returned datas when being locally linux server, first is that
Disk Mapping, second is that calling ie by socket in target windows server, being returned from url parameter.
(5) when local is linux server, the data of return is ordered by " dos2unix ", dos file is switched into linux text
Part, and utf-8 data encoding is carried out, then execute step (6);When being locally windows server, directly execution step (6).
(6) according to treated data, pointedly the account number of target windows server is managed, in target
Account number batch is executed on windows server changes close, increase or the operation of Dele account.Account number changes close, is meeting target
It, can be with customized Password Length, complexity and validity period on the basis of windwos server password rule.
2. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
It is, the franchise account number of target windows server is obtained in the step 1, guarantees that bat script in the process of implementation will not be because
It is terminated for rights concerns by target windows server;Target windows type of server is detected, common are now
windows server 2000、windows server 2003、windows server 2008、windows server
2012、windows server 2016。
3. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
It is, is remotely connected when being locally linux server in the step 2 by rdesktop, and in rdesktop
The bat script length of middle generation is limited by rdesktop.
4. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
It is, in the step 3, bat script passes through the automatic all account numbers for obtaining target windows server of " net user " order
And account number relevant information, net user is more succinct with respect to for other orders, is conducive to script execution.
5. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
It is, the method for two kinds of returned datas in the step 4 when being locally linux server is because of windows server
Systematical difference caused by.Windows server 2000, windows server2003, windows server 2008 are logical
Cross Disk Mapping come returned data, windows server 2012 and windows server 2016 pass through socket call
Ie, the returned data from url.
6. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
Be, in the step 5 processing returns to data, when data echo plex mode is Disk Mapping, local linux server and target
The document No. of windows server is different, needs dos file switching to linux file;Data format is that Chinese plus space add
File content is first carried out utf-8 data encoding after file conversion by Chinese plus line feed, then removes line feed space, is finally intercepted
Chinese character.
7. the method that a kind of remote auto according to claim 1 obtains and manages windows server account number, feature
It is, in the step 6, the password of setting may include spy on the basis of meeting target windows server password rule
Different symbol, such as!, *, _ etc. and letter and number.Account number is more than cryptographic validity, changes close to account number or deletes.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910196529.8A CN109818975A (en) | 2019-03-14 | 2019-03-14 | A kind of method that remote auto obtains and manages windows server account number |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910196529.8A CN109818975A (en) | 2019-03-14 | 2019-03-14 | A kind of method that remote auto obtains and manages windows server account number |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109818975A true CN109818975A (en) | 2019-05-28 |
Family
ID=66609097
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910196529.8A Pending CN109818975A (en) | 2019-03-14 | 2019-03-14 | A kind of method that remote auto obtains and manages windows server account number |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109818975A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101676875A (en) * | 2008-08-15 | 2010-03-24 | 北京北大众志微系统科技有限责任公司 | Method for seamless access remote Windows application program by Linux terminal and apparatus thereof |
| US20160063023A1 (en) * | 2014-08-29 | 2016-03-03 | Nhn Entertainment Corporation | File management method for selecting files to process a file management instruction simultaneously |
| CN107423638A (en) * | 2017-08-02 | 2017-12-01 | 成都安恒信息技术有限公司 | A kind of password management system and application method based on order detection type Modify password |
| CN109255254A (en) * | 2018-08-24 | 2019-01-22 | 沈文策 | A kind of data base authority management method, device, equipment and storage medium |
-
2019
- 2019-03-14 CN CN201910196529.8A patent/CN109818975A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101676875A (en) * | 2008-08-15 | 2010-03-24 | 北京北大众志微系统科技有限责任公司 | Method for seamless access remote Windows application program by Linux terminal and apparatus thereof |
| US20160063023A1 (en) * | 2014-08-29 | 2016-03-03 | Nhn Entertainment Corporation | File management method for selecting files to process a file management instruction simultaneously |
| CN107423638A (en) * | 2017-08-02 | 2017-12-01 | 成都安恒信息技术有限公司 | A kind of password management system and application method based on order detection type Modify password |
| CN109255254A (en) * | 2018-08-24 | 2019-01-22 | 沈文策 | A kind of data base authority management method, device, equipment and storage medium |
Non-Patent Citations (3)
| Title |
|---|
| WUWEIZHU: ""linux远程登录windows服务器"", 《HTTPS://BLOG.51CTO.COM/WUWEIZHU/2095964》 * |
| 朝闻道: ""Windows系统命令行net user命令用法"", 《HTTPS://WWW.CNBLOGS.COM/FINDUMARS/P/5554682.HTML》 * |
| 阿术和薇薇安: ""dos2unix命令"", 《HTTPS://BLOG.CSDN.NET/U011357712/ARTICLE/DETAILS/77774096》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10848505B2 (en) | Cyberattack behavior detection method and apparatus | |
| US10339298B2 (en) | Weak password support in a multi-user environment | |
| US10445392B2 (en) | Official account quick response code generation method and server, official account following method and server, and terminal | |
| US9805209B2 (en) | Systems and methodologies for managing document access permissions | |
| CN109598117A (en) | Right management method, device, electronic equipment and storage medium | |
| Lazouski et al. | Usage control in cloud systems | |
| CN112651011B (en) | Login verification method, device and equipment for operation and maintenance system and computer storage medium | |
| WO2015148331A1 (en) | Techniques to operate a service with machine generated authentication tokens | |
| CN105610810A (en) | Data processing method, client and servers | |
| CN104253812A (en) | Delegating authentication for a web service | |
| US11575681B2 (en) | System and method for secure access control | |
| US20140173693A1 (en) | Cookie Optimization | |
| US11620141B2 (en) | Client side browser-based caching for monitored resources | |
| CN102984044B (en) | The method and apparatus realizing data transmission security based on VPN (virtual private network) | |
| CN106487789A (en) | A kind of method of the password of modification application account, device and mobile terminal | |
| CN113992408B (en) | Multi-system unified login information processing method and system | |
| CN109818975A (en) | A kind of method that remote auto obtains and manages windows server account number | |
| CN106487829B (en) | A kind of virtual machine control system, method and user terminal | |
| CN114422182B (en) | Unified identity management platform | |
| CN114257451B (en) | Verification interface replacement method and device, storage medium and computer equipment | |
| CN103647704A (en) | Microblog registering method and microblog registering system based on ERP (Enterprise Resource Planning) system | |
| CN114021160A (en) | Method, system and medium for regulating and controlling software control authority | |
| CN208061282U (en) | A kind of Quick Response Code control device and its gate system | |
| CN108986267A (en) | A kind of user registering method and system applied to electronic password lock control | |
| CN114268472B (en) | User authentication method and system of application system based on block chain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190528 |