CN110727490A - Windows account remote management method, device and storage medium - Google Patents

Windows account remote management method, device and storage medium Download PDF

Info

Publication number
CN110727490A
CN110727490A CN201910885669.6A CN201910885669A CN110727490A CN 110727490 A CN110727490 A CN 110727490A CN 201910885669 A CN201910885669 A CN 201910885669A CN 110727490 A CN110727490 A CN 110727490A
Authority
CN
China
Prior art keywords
login
user
password
layer
account
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910885669.6A
Other languages
Chinese (zh)
Inventor
林琪琛
覃芳
王丹
赵楚旋
何浩
曹晓能
徐乐乐
张润青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ping An Technology Shenzhen Co Ltd
Original Assignee
Ping An Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ping An Technology Shenzhen Co Ltd filed Critical Ping An Technology Shenzhen Co Ltd
Priority to CN201910885669.6A priority Critical patent/CN110727490A/en
Publication of CN110727490A publication Critical patent/CN110727490A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/451Execution arrangements for user interfaces
    • G06F9/452Remote windowing, e.g. X-Window System, desktop virtualisation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/547Remote procedure calls [RPC]; Web services

Abstract

The invention provides a Windows account remote management method, a device and a computer readable storage medium, wherein the method comprises the following steps: the calling layer acquires instruction information of a user based on an access event of the client; the calling layer generates a control instruction and a data parameter according to the instruction information; the calling layer transmits the control instruction and the data parameter to the bottom layer after the control instruction and the data parameter are transferred by the proxy layer; the bottom layer generates a command execution program according to the control instruction and the data parameters; and the local Windows host executes the command execution program to realize the remote management of the account of the local Windows host. Establishing a three-layer framework comprising a calling layer, a proxy layer and a bottom layer, realizing the connection between a client and a local Windows host, and realizing account addition, deletion, password modification and remote login of the local Windows host by setting corresponding instructions and programs on the calling layer, the proxy layer and the bottom layer.

Description

Windows account remote management method, device and storage medium
Technical Field
The invention relates to the technical field of Windows account management, in particular to a method and a device for Windows account remote management and a computer readable storage medium.
Background
Remote control means that a manager dials in a different place through a computer network or both parties access the Internet and the like to communicate with a controlled computer, display the desktop environment of the controlled computer on the computer, and perform configuration, software installation, modification, remote access and other work on the remote computer through a local computer. Remote control is usually performed via the internet. The computer at different place is the sending end of the operation instruction, called the main control end or the client terminal, and the controlled computer at local place is called the controlled end or the server end. The remote distance is not equal to the remote distance, and the master control end and the controlled end can be positioned in the same room of the same local area network or can be two or more computers connected with the Internet and positioned at any positions.
In a traditional remote login mode, before the host of a controlled end is remotely controlled, a local administrator needs to manually log in the controlled host, and then the host can be logged in and accessed in a mode of remote login, so that the operation is complex, the efficiency is low, and human resources are seriously wasted.
In addition, in order to prevent the important information of the local enterprise from being stolen, many applications of the local enterprise are arranged in an internal network, the network of an external user cannot be directly reached, but the user has strong requirements to use the internal applications, and the local enterprise also wants to provide some local application services for the external client under the condition of ensuring the data security of the local host, so that the benefit of the local enterprise is increased.
In addition, because the number of users accessing the local enterprise host is large, and the application services on the local host that different users need to access are also different, different accounts need to be established for different users, and only corresponding application services are configured for each account. However, the addition, deletion, and password modification of the traditional Windows account are completed through manual operations of a local administrator, and cannot automatically add a Windows account to a local host according to the will of a remote user, and cannot add a Windows user to delete or modify a password any time and any place, which seriously affects the efficiency of local Windows account management work.
Based on the above problems, a Windows account management method capable of adding, deleting, password modifying and remotely logging in a Windows account of a local Windows host at any time and any place is needed.
Disclosure of Invention
The invention provides a Windows account remote management method, an electronic device and a computer storage medium, which mainly aim to establish a three-layer framework comprising a calling layer, an agent layer and a bottom layer to realize the connection between a client and a local Windows host, realize the account addition, deletion, password modification and remote login of the local Windows host by setting corresponding instructions and programs on the calling layer, the agent layer and the bottom layer, and effectively prevent external personnel from stealing important data information on the local Windows host by deploying the agent layer in a private network.
To achieve the above object, the present invention provides an electronic device, comprising: a memory, a processor, and a Windows account remote management program stored in the memory and executable on the processor, the Windows account remote management program when executed by the processor implementing the steps of:
obtaining instruction information based on the access event of the client side in a calling layer;
generating a control instruction and a data parameter according to the instruction information in the calling layer;
transferring the control instruction and the data parameter from the calling layer through the proxy layer and then sending the control instruction and the data parameter to the bottom layer;
and generating a command execution program at the bottom layer according to the control instruction and the data parameters, so that a local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
Preferably, the calling layer, the proxy layer and the bottom layer jointly form a Windows account management framework, wherein the calling layer is deployed in a server connected with the client internet, the proxy layer is deployed in a private network, and the bottom layer is deployed in the local Windows host;
a command generating program is deployed at the calling layer, a command transit program is deployed at the proxy layer,
and generating the control instruction and the data parameter on the basis of the command generating program according to the instruction information at the calling layer, and sending the control instruction and the data parameter to the bottom layer on the basis of the special program in the command at the proxy layer.
Preferably, the private network is a private line connection between the calling layer and the bottom layer;
the information transmission mode of the special network is one-way transmission.
Preferably, the instruction information includes a user management type and user management data; the user management data comprises an application name, a login password and a new password;
wherein, different user management types correspond to different user management data;
and generating a corresponding control instruction and a corresponding data parameter according to the user management type in the calling layer, and generating a corresponding command execution program according to the control instruction and the data parameter in the bottom layer so that the local Windows host can execute the command execution program and perform corresponding remote management on the account of the local Windows host.
Preferably, if the user management type is a user addition type, the user management data is an application name;
generating a user adding control instruction according to the user adding type in the calling layer, and generating an initial user name and an initial password as data parameters according to the application name;
generating a user adding naming executive program on the bottom layer according to the user adding control instruction, the initial user name and the initial password, so that the local Windows host executes the user adding command executive program to generate an account with the initial user name as the user name and the initial password as the password;
if the user management type is a user deletion type, the user management data is a login name and a login password;
generating a user deletion control instruction according to the user deletion type in the calling layer, and taking the login name and the login password as the data parameters;
generating a user deletion command execution program at the bottom layer according to the user deletion control instruction, the login name and the login password, so that the local Windows host executes the user deletion command execution program to search an account matched with the login name and the login password and delete the account;
if the user management type is a password modification type, the user management data is a login name, a login password and a new password;
generating a password modification control instruction according to the password modification type in the calling layer, and taking the login name, the original password and the new password as the data parameters;
and generating a password modification command execution program at the bottom layer according to the password modification control instruction, the login name, the login password and the new password, so that the local Windows host executes the password modification command execution program to search an account matched with the login name and the login password and carry out password modification on the account according to the new password.
Preferably, a remote login channel is arranged between the local Windows host and the client;
if the user management type is a remote login type, the user management data is a login name and a login password;
generating a remote login control instruction according to the remote login type in the calling layer, and setting the login name and the login password as the data parameters;
generating a remote login command execution program at the bottom layer according to the remote login control instruction, the login name and the login password, so that the local Windows host executes the remote login command execution program to log in an account matched with the login name and the login password and open a remote login channel; the remote login channel is used for the client to realize remote login and access to the local Windows host.
Preferably, an encrypted network transmission protocol is arranged in the remote login channel, the encrypted network transmission protocol is related to the login name and the login password, and the remote login channel is used for a client to realize remote login and access to the local Windows host according to the login name and the login password.
Preferably, the instruction information further includes a protocol type, and the protocol type is related to the application service provided by the local Windows host;
if the user management type is a user adding type;
generating a user adding control instruction according to the user adding type in the calling layer, and generating an initial user name and an initial password as data parameters according to the application name and the protocol type;
and generating a user adding naming executive program on the bottom layer according to the user adding type, the initial user name and the initial password, so that the local Windows host executes the user adding command executive program to generate an account with the initial user name as the user name and the initial password as the password, and configuring the application service related to the protocol type for the account.
In addition, in order to achieve the above object, the present invention further provides a method for remote management of a Windows account, the method comprising:
obtaining instruction information based on the access event of the client side in a calling layer;
generating a control instruction and a data parameter according to the instruction information in the calling layer;
transferring the control instruction and the data parameter from the calling layer through the proxy layer and then sending the control instruction and the data parameter to the bottom layer;
and generating a command execution program at the bottom layer according to the control instruction and the data parameters, so that a local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
In addition, in order to achieve the above object, the present invention further provides a computer-readable storage medium, where the computer-readable storage medium includes a Windows account remote management program, and when the Windows account remote management program is executed by a processor, the steps in the aforementioned Windows account remote management method are implemented.
The Windows account remote management method, the electronic device and the computer readable storage medium provided by the invention realize the connection between the client and the local Windows host by establishing a three-layer framework comprising a calling layer, a proxy layer and a bottom layer, and realize the account addition, deletion, password modification and remote login to the local Windows host at any time and any place by setting corresponding instructions and programs on the calling layer, the proxy layer and the bottom layer, thereby obviously improving the efficiency of the local Windows account management work. In addition, important data information on a local Windows host can be effectively prevented from being stolen by external personnel by deploying the agent layer in a private network.
Drawings
FIG. 1 is a schematic structural diagram of an electronic device according to a preferred embodiment of the present invention;
FIG. 2 is a flowchart of a method for remote management of Windows accounts according to a preferred embodiment of the present invention;
FIG. 3 is a schematic diagram of data access in the Windows account remote management method provided by the present invention;
fig. 4 is a schematic diagram of modules inside the Windows account remote management program provided by the present invention.
The implementation, functional features and advantages of the objects of the present invention will be further explained with reference to the accompanying drawings.
Detailed Description
It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
The invention provides a Windows account remote management method, which is applied to an electronic device 70. Referring to fig. 1, a schematic structural diagram of an electronic device 70 according to a preferred embodiment of the invention is shown.
In the embodiment, the electronic device 70 may be a terminal device having a computing function, such as a server, a smart phone, a tablet computer, a portable computer, or a desktop computer.
The electronic device 70 includes: a processor 71 and a memory 72.
The memory 72 includes at least one type of readable storage medium. At least one type of readable storage medium may be a non-volatile storage medium such as a flash memory, a hard disk, a multimedia card, a card-type memory, and the like. In some embodiments, the readable storage medium may be an internal storage unit of the electronic device 70, such as a hard disk of the electronic device 70. In other embodiments, the readable storage medium may be an external memory of the electronic device 1, such as a plug-in hard disk provided on the electronic device 70, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card), and the like.
In the present embodiment, the storage medium readable by the memory 72 is generally used for storing a Windows account remote management program 73 installed in the electronic device 70. The memory 72 may also be used to temporarily store data that has been output or is to be output.
The processor 72 may be, in some embodiments, a Central Processing Unit (CPU), microprocessor or other data Processing chip for executing program codes stored in the memory 72 or Processing data, such as a Windows account remote management program 73.
In some embodiments, the electronic device 70 is a terminal device of a smartphone, tablet, portable computer, or the like. In other embodiments, the electronic device 70 may be a server.
Fig. 1 shows only an electronic device 70 having components 71-73, but it is to be understood that not all of the shown components are required to be implemented, and that more or fewer components may be implemented instead.
Optionally, the electronic device 70 may further include a user interface, which may include an input unit such as a Keyboard (Keyboard), a voice input device such as a microphone (microphone) or other devices with voice recognition function, a voice output device such as a sound box, a headset, etc., and optionally may also include a standard wired interface, a wireless interface.
Optionally, the electronic device 70 may further include a display, which may also be referred to as a display screen or a display unit. In some embodiments, the display device may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, an Organic Light-Emitting Diode (OLED) touch device, or the like. The display is used for displaying information processed in the electronic device 70 and for displaying a visualized user interface.
Optionally, the electronic device 70 may further include a touch sensor. The area provided by the touch sensor for the user to perform touch operation is referred to as a touch area. Further, the touch sensor here may be a resistive touch sensor, a capacitive touch sensor, or the like. The touch sensor may include not only a contact type touch sensor but also a proximity type touch sensor. Further, the touch sensor may be a single sensor, or may be a plurality of sensors arranged in an array, for example.
The area of the display of the electronic device 70 may be the same as or different from the area of the touch sensor. Optionally, the display is stacked with the touch sensor to form a touch display screen. The device detects touch operation triggered by a user based on the touch display screen.
Optionally, the electronic device 70 may further include a Radio Frequency (RF) circuit, a sensor, an audio circuit, and the like, which are not described in detail herein.
In addition, for the convenience of understanding of the present invention, the present invention also provides a flowchart (as shown in fig. 2) of a preferred embodiment of the remote management method for Windows accounts and a schematic view of access routes in the remote management method for Windows accounts (as shown in fig. 3).
In the apparatus embodiment shown in fig. 1, the memory 72, which is a type of computer storage medium, may include an operating system and a Windows account remote management program 73; the processor 71, when executing the Windows account remote management program 73 stored in the memory 72, performs the following steps:
s110: when a client accesses a calling layer, acquiring instruction information of the user based on an access event of the client at the calling layer; the calling layer is deployed in a server which is communicated with the client through the Internet.
In order to facilitate the calling layer to acquire the instruction information of the user, the calling layer can establish a service website on the internet. The client can realize man-machine interaction by using a form that the client accesses the service website, and inputs corresponding instruction information at a corresponding position of the website according to own requirements. The calling layer obtains the instruction information input by the client through the website, wherein the client terminal can be a mobile phone, a PAD, a personal computer and the like.
Specifically, the instruction information may include a user management type and user management data, where the user management type is related to a type of account remote management that the user wants to perform on the local Windows host, and mainly includes four types of user addition, user deletion, password modification, and remote login. The user management data is related data required by a certain type or types of account remote management operations which the user wants to perform on the local Windows host, and comprises an application name, a login password and a new password, wherein the application name is a character string (such as zhangsan) at one end, which is set by the new user for adding one account on the local Windows host, the login name and the login password are data required by the old user for logging in the local Windows host, and the new password is used for modifying the password of the account on the local Windows host by the user.
It should be noted that different user management types correspond to different user management data, for example, if the user management type is a user addition type, the user management data is an application name; if the user management type is a user deletion type, the user management data is a login name and a login password; if the user management type is a password modification type, the user management data are a login name, a login password and a new password; and if the user management type is the remote login type, the user management data is a login name and a login password.
S120: and generating a control instruction and a data parameter according to the instruction information in the calling layer.
Specifically, different types of control instructions are generated in the calling layer according to the specific types of the user management types, and data parameters matched with the control instructions are generated according to the user management data.
For example, when the user management type is a user adding type and the user management data is an application name, a user adding control instruction is automatically generated in the calling layer according to the user adding type, and an initial user name and an initial password which are matched with the application name are automatically generated according to the application name as data parameters.
For example, with the application name zhangsan, a combination of a number and the application name (similar to 1zhangsan556) is automatically generated at a calling layer as an initial user name (the initial user name is not repeated with the existing user name), and then an initial password (similar to ADKD #5623) consisting of letters, numbers and special symbols is automatically generated.
And when the user management type is a user deletion type and the user management data is a login name and a login password, automatically generating a user deletion control instruction according to the user deletion type in a calling layer, and taking the login name and the login password as data parameters matched with the user deletion control instruction.
When the user management type is a password modification type and the user management data is a login name, a login password and a new password, a password modification control instruction is automatically generated on a calling layer according to the password modification type, and the login name, the original password and the new password are used as data parameters matched with the password modification instruction.
And when the user management type is a remote login type and the user management data is a login name and a login password, automatically generating a remote login control instruction according to the remote login type in a calling layer, and setting the login name and the login password as data parameters matched with the remote login control instruction.
S130: the control instruction and the data parameter matched with the control instruction are transmitted to the proxy layer at the calling layer, and then transmitted to the bottom layer after being transferred by the proxy layer; the agent layer is deployed in a server in a private network, and the bottom layer is deployed in a local Windows host to be managed.
Specifically, a calling layer, a proxy layer and a bottom layer jointly form a Windows account management framework, a command generating program is deployed on the calling layer, and a command transfer program is deployed on the proxy layer; the control instruction and the data parameters are generated on the basis of the command generation program according to the instruction information in the calling layer, the control instruction and the data parameters are sent to the bottom layer on the basis of the special command in the proxy layer, and the command generation program, the command transfer program and the command execution generation program are all written in java language, so that automatic transmission of various information can be realized by only calling the corresponding java programs among the calling layer, the proxy layer and the bottom layer.
It should be noted that, because the calling layer is directly connected to the internet through a network, and a large amount of important data information is stored in the local windows host, the calling layer and the bottom layer can be effectively isolated by setting a proxy layer between the calling layer and the bottom layer as a transfer station, so as to prevent other people from stealing important data information on the local host when they are alive.
It should be further noted that a private network is different from the internet, where a private network is a private connection between two enterprises or servers, and a private line is a permanent private telephone line connection between two points. Unlike a typical dial-up connection, the private line is always connected. The greatest advantage of this connection is safety. Except for these two enterprises that are legally connected to the private network, no other person or enterprise can enter the private network. Therefore, the invention realizes the special line connection between the calling layer and the bottom layer through the special network, and deploys the agent layer in the special network to realize the transfer of the information, thereby effectively ensuring the safety and the integrity of the information flow.
In addition, in order to further ensure the security and the high efficiency of local Windows user management, the transmission mode of the private network can also be set as unidirectional transmission, that is, the mode of transmitting information can only be from a calling layer to a proxy layer, and can only be from the proxy layer to a bottom layer, and reverse information transmission cannot be performed.
S140: and generating a command execution program on the bottom layer according to the control instruction and the data parameters so that the local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
Specifically, different types of command execution programs are generated at the bottom layer according to different types of control instructions and data parameters.
For example, a user adding naming executive program is generated at the bottom layer according to a user adding control instruction, an initial user name and an initial password; generating a user deletion command execution program on the bottom layer according to the user deletion control command, the login name and the original password; generating a password modification command execution program on the bottom layer according to the password modification control instruction, the login name, the login password and the new password; and generating a remote login command execution program according to the remote login control command, the login name and the login password at the bottom layer.
Further, the local Windows host executes different types of command execution programs for different types of remote management of the local Windows host account.
For example, the local Windows host executes a user addition command execution program to automatically generate an account with an initial user name as a user name and an initial password as a password; the local Windows host executes a user deletion command execution program to automatically search an account matched with the login name and the login password and delete the account; and the local Windows host executes the password modification command execution program to automatically search the account matched with the login name and the login password and modify the password of the account according to the new password.
The local Windows host executes a remote login command execution program to automatically log in an account matched with the login name and the login password and open a remote login channel; the client realizes remote login and access to the local Windows host through the remote login channel.
It should be noted that the remote login channel is normally kept closed, and the remote login channel is automatically opened only after the local Windows host executes the remote login command execution program, and is automatically closed after the user has finished accessing the local Windows host. By setting the remote login channel, the local Windows host can be isolated from the Internet at ordinary times, and the remote login channel can be opened only when a user performs remote login, so that other people can be prevented from stealing important data information on the local Windows host through the Internet.
In addition, in order to further prevent others from stealing important data information on the local Windows host when the user accesses the local Windows host through the remote login channel, an encrypted network transmission protocol can be set in the login management channel, for example: and the secure Shell protocol (SSH), an encrypted network transmission protocol and a login name and a login password are related, and a user uses the login name and the login password as protocol keys to realize remote login and access to the local Windows host through a remote management channel.
In a preferred embodiment of the present invention, the instruction information may further include a protocol type, where the protocol type is related to an application service provided by the local Windows host, such as a big data service, a special software application service, a database access service, and the like, and different protocol types correspond to different application services. The user can sign different protocol types on the service website according to the required application service.
If the user management type is the user adding type; the calling layer generates a user adding control instruction according to the user adding type, and generates an initial user name and an initial password as data parameters according to the application name and the protocol type; the bottom layer generates a user adding naming executive program according to the user adding type, the initial user name and the initial password; the local Windows host executes the user adding command execution program to automatically generate an account with the initial user name as a user name and the initial password as a password, and configures application services related to the protocol type for the account. It should be noted that only the application service corresponding to the protocol type is configured on the account, which not only saves resources on the local Windows host, but also further prevents the user from accessing some data information unrelated to the local Windows host, and improves the security of the local data information.
In addition, in order to facilitate the management of the user, corresponding protocol remaining time can be set for different protocol types on the local Windows host, the protocol remaining time is automatically updated along with the time, and when the protocol remaining time corresponding to the account matched with the protocol type on the local Windows host returns to zero, the account is automatically deleted by the local Windows host.
In addition, a user information base can be further arranged in the calling layer, the user information base is used for storing various information of the user, such as application names, user names, passwords, protocol types, protocol remaining time and the like, and after the calling layer receives the obtained user instruction information, the calling layer firstly updates the user information base according to the user instruction information, such as user addition, user deletion, password modification and the like. And then generating a control instruction and data parameters according to the instruction information and sending the control instruction and the data parameters to the agent layer. In practical application, a user can access the user information base through a service website, so that various information of the user can be inquired and viewed.
Furthermore, a remote login group can be set on the local Windows host, the remote login group is a database which is similar to a user information base and contains all user names and passwords which can log in the local Windows host, and the remote login group can perform real-time updating according to different types of command execution programs executed by the local Windows host. The remote login group is arranged, so that remote management of the windows user is facilitated, and data information loss of the user can be prevented when the user information base of the calling layer is damaged.
The electronic device 1 provided in the above embodiment realizes connection between the client and the local Windows host by establishing a three-layer framework including a calling layer, a proxy layer, and a bottom layer, and realizes account addition, deletion, password modification, and remote login to the local Windows host at any time and any place by setting corresponding instructions and programs in the calling layer, the proxy layer, and the bottom layer, thereby significantly improving the efficiency of local Windows account management work. In addition, important data information on a local Windows host can be effectively prevented from being stolen by external personnel by deploying the agent layer in a private network.
In other embodiments, the Windows account remote management program 73 may also be divided into one or more modules, which are stored in the memory 72 and executed by the processor 71 to accomplish the present invention. The modules referred to herein are referred to as a series of computer program instruction segments capable of performing specified functions. Referring to fig. 3, a block diagram of a preferred embodiment of the Windows account remote management program 73 in fig. 1 is shown. The Windows account remote management program 73 may be divided into: an instruction information acquisition module 74, a control instruction and data parameter generation module 75, a command execution program generation module 76, and a command execution program execution module 77. The functions or operational steps performed by the modules 74-77 are similar to those described above and will not be described in detail herein, for example, where:
an instruction information obtaining module 74, configured to obtain instruction information of the user based on the access event of the client at the call layer; the calling layer is deployed in a server which is communicated with the client through the Internet.
A control instruction and data parameter generating module 75, configured to generate a control instruction and data parameters according to the instruction information in the calling layer; and the calling layer transmits the control instruction and the data parameter to the bottom layer after the control instruction and the data parameter are transferred by the proxy layer.
And a command execution program generation module 76 for generating a command execution program based on the control instruction and the data parameter at the bottom layer.
And a command execution program execution module 77, configured to execute the command execution program on the local Windows host to implement remote management of the local Windows host account.
In addition, the invention also provides a Windows account remote management method. Referring to fig. 2, a flowchart of a remote management method for Windows accounts according to a preferred embodiment of the present invention is shown. The method may be performed by an apparatus, which may be implemented by software and/or hardware.
In this embodiment, the method for Windows account remote management includes: step S110-step S140.
S110: obtaining instruction information based on the access event of the client side in a calling layer;
s120: generating a control instruction and a data parameter according to the instruction information in a calling layer;
s130: transferring the control instruction and the data parameter from the calling layer to the bottom layer through the proxy layer;
s140: and generating a command execution program on the bottom layer according to the control instruction and the data parameters so that the local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
In addition, an embodiment of the present invention further provides a computer-readable storage medium, where the computer-readable storage medium includes a Windows account remote management program, and when executed by a processor, the Windows account remote management program implements the following operations:
s110: obtaining instruction information based on the access event of the client side in a calling layer;
s120: generating a control instruction and a data parameter according to the instruction information in a calling layer;
s130: transferring the control instruction and the data parameter from the calling layer to the bottom layer through the proxy layer;
s140: and generating a command execution program on the bottom layer according to the control instruction and the data parameters so that the local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
The specific implementation of the computer-readable storage medium provided by the present invention is substantially the same as the specific implementation of the above-mentioned Windows account remote management method and electronic device, and will not be described herein again.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, apparatus, article, or method that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, apparatus, article, or method. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, apparatus, article, or method that includes the element.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments. Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium (e.g., ROM/RAM, magnetic disk, optical disk) as described above and includes instructions for enabling a terminal device (e.g., a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present invention.
The above description is only a preferred embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes, which are made by using the contents of the present specification and the accompanying drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.

Claims (10)

1. A Windows account remote management method is applied to an electronic device and is characterized by comprising the following steps:
obtaining instruction information based on the access event of the client side in a calling layer;
generating a control instruction and a data parameter according to the instruction information in the calling layer;
transferring the control instruction and the data parameter from the calling layer through the proxy layer and then sending the control instruction and the data parameter to the bottom layer;
and generating a command execution program at the bottom layer according to the control instruction and the data parameters, so that a local Windows host can execute the command execution program and realize remote management of the account of the local Windows host.
2. The Windows account remote management method of claim 1,
the calling layer, the proxy layer and the bottom layer jointly form a Windows account management framework, wherein the calling layer is deployed in a server which is communicated with the client Internet, the proxy layer is deployed in a private network, and the bottom layer is deployed in the local Windows host;
a command generating program is deployed at the calling layer, a command transit program is deployed at the proxy layer,
and generating the control instruction and the data parameter on the basis of the command generating program according to the instruction information at the calling layer, and sending the control instruction and the data parameter to the bottom layer on the basis of the special program in the command at the proxy layer.
3. The Windows account remote management method of claim 2,
the special network is a special line connection between the calling layer and the bottom layer;
the information transmission mode of the special network is one-way transmission.
4. The Windows account remote management method of claim 1,
the instruction information comprises a user management type and user management data; the user management data comprises an application name, a login password and a new password;
wherein, different user management types correspond to different user management data;
and generating a corresponding control instruction and a corresponding data parameter according to the user management type in the calling layer, and generating a corresponding command execution program according to the control instruction and the data parameter in the bottom layer so that the local Windows host can execute the command execution program and perform corresponding remote management on the account of the local Windows host.
5. The Windows account remote management method of claim 4,
if the user management type is a user adding type, the user management data is an application name;
generating a user adding control instruction according to the user adding type in the calling layer, and generating an initial user name and an initial password as data parameters according to the application name;
generating a user adding naming executive program on the bottom layer according to the user adding control instruction, the initial user name and the initial password, so that the local Windows host executes the user adding command executive program to generate an account with the initial user name as the user name and the initial password as the password;
if the user management type is a user deletion type, the user management data is a login name and a login password;
generating a user deletion control instruction according to the user deletion type in the calling layer, and taking the login name and the login password as the data parameters;
generating a user deletion command execution program at the bottom layer according to the user deletion control instruction, the login name and the login password, so that the local Windows host executes the user deletion command execution program to search an account matched with the login name and the login password and delete the account;
if the user management type is a password modification type, the user management data is a login name, a login password and a new password;
generating a password modification control instruction according to the password modification type in the calling layer, and taking the login name, the original password and the new password as the data parameters;
and generating a password modification command execution program at the bottom layer according to the password modification control instruction, the login name, the login password and the new password, so that the local Windows host executes the password modification command execution program to search an account matched with the login name and the login password and carry out password modification on the account according to the new password.
6. The Windows account remote management method of claim 4,
a remote login channel is arranged between the local Windows host and the client;
if the user management type is a remote login type, the user management data is a login name and a login password;
generating a remote login control instruction according to the remote login type in the calling layer, and setting the login name and the login password as the data parameters;
generating a remote login command execution program at the bottom layer according to the remote login control instruction, the login name and the login password, so that the local Windows host executes the remote login command execution program to log in an account matched with the login name and the login password and open a remote login channel; the remote login channel is used for the client to realize remote login and access to the local Windows host.
7. The Windows account remote management method of claim 4,
and an encrypted network transmission protocol is arranged in the remote login channel, the encrypted network transmission protocol is related to the login name and the login password, and the remote login channel is used for a client to realize remote login and access to the local Windows host according to the login name and the login password.
8. The Windows account remote management method of claim 5,
the instruction information also comprises a protocol type, and the protocol type is related to the application service provided by the local Windows host;
if the user management type is a user adding type;
generating a user adding control instruction according to the user adding type in the calling layer, and generating an initial user name and an initial password as data parameters according to the application name and the protocol type;
and generating a user adding naming executive program on the bottom layer according to the user adding type, the initial user name and the initial password, so that the local Windows host executes the user adding command executive program to generate an account with the initial user name as the user name and the initial password as the password, and configuring the application service related to the protocol type for the account.
9. An electronic device, comprising: a memory, a processor, and a Windows account remote management program stored in the memory and executable on the processor, the Windows account remote management program when executed by the processor implementing the steps of the Windows account remote management method of any of claims 1 to 8.
10. A computer-readable storage medium, wherein a Windows account remote management program is stored in the computer-readable storage medium, and when the Windows account remote management program is executed by a processor, the steps of the Windows account remote management method according to any one of claims 1 to 8 are implemented.
CN201910885669.6A 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium Pending CN110727490A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910885669.6A CN110727490A (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910885669.6A CN110727490A (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Publications (1)

Publication Number Publication Date
CN110727490A true CN110727490A (en) 2020-01-24

Family

ID=69219195

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910885669.6A Pending CN110727490A (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Country Status (1)

Country Link
CN (1) CN110727490A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114519184A (en) * 2022-04-20 2022-05-20 北京圣博润高新技术股份有限公司 Account number encryption method, account number encryption device, account number encryption equipment and medium based on Agent process

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130086065A1 (en) * 2011-09-29 2013-04-04 Oracle International Corporation Privileged account manager, dynamic policy engine
CN104967609A (en) * 2015-04-28 2015-10-07 腾讯科技(深圳)有限公司 Intranet development server access method, intranet development server access device and intranet development server access system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130086065A1 (en) * 2011-09-29 2013-04-04 Oracle International Corporation Privileged account manager, dynamic policy engine
CN104967609A (en) * 2015-04-28 2015-10-07 腾讯科技(深圳)有限公司 Intranet development server access method, intranet development server access device and intranet development server access system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
闫瑞锋 等: "NT网域用户帐号的远程管理", 佳木斯大学学报(自然科学版), vol. 19, no. 03, pages 235 - 239 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114519184A (en) * 2022-04-20 2022-05-20 北京圣博润高新技术股份有限公司 Account number encryption method, account number encryption device, account number encryption equipment and medium based on Agent process

Similar Documents

Publication Publication Date Title
US20220276910A1 (en) Dynamically integrating a client application with third-party services
US8844017B2 (en) Software firewall control
CN106068521B (en) Communications status about the application for closing rule policy update
CN103023875B (en) A kind of account management system and method
US11272030B2 (en) Dynamic runtime interface for device management
KR20150036323A (en) Security and data isolation for tenants in a business data system
CN109088812B (en) Information processing method, information processing device, computer equipment and storage medium
US9998439B2 (en) Mobile device identify factor for access control policies
US10582348B2 (en) Message-based management service enrollment
US10908970B1 (en) Data interface for secure analytic data system integration
US11523260B2 (en) Delivery of configuration information for cross-platform application integration
US11588681B2 (en) Migration of managed devices to utilize management platform features
WO2022206080A1 (en) Operation permission management method and apparatus for online document, and device and storage medium
US10621111B2 (en) System and method for unified secure remote configuration and management of multiple applications on embedded device platform
US20190007392A1 (en) Single sign-on mechanism on a rich client
US20180032618A1 (en) System and methods for retrieving raw data from unpredictable data sources
CN110727490A (en) Windows account remote management method, device and storage medium
JP2015184827A (en) Browsing sharing server, browsing sharing system, browsing sharing method, and browsing sharing program
US11768692B2 (en) Systems and methods for automated application launching
CN116743496A (en) Device remote operation method, device, computer device and storage medium
JP2002016694A (en) Telephone number management system for portable telephone set using internet
CN107111635B (en) Content delivery method
US20050102380A1 (en) Method, system, and computer program product for theme configuration and deployment
CN107180174A (en) Pass code for computing device
US20180032632A1 (en) System and methods for retrieving data using a database configuration file

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination