Desktop Integration with the Windows Credentials Provider (version 2.2 and older)

Christopher Dakin

Introduction

The LogonBox Credential Provider provides Desktop Integration for Windows 10, Windows 8.1/8 and Windows 7.

 

 

 

Downloads

Microsoft Installer packages are available which also provide support for unattended installs. No reboot is required before the logon dialogue will show the account action options.

Version 2.3.0-1077 **Last updated 12th October 2020** 

 

EXE installers

LogonBox Credentials Provider 64 bit exe

LogonBox Credentials Provider 32 bit exe

 

MSI installers

LogonBox Credentials Provider 64 bit msi

LogonBox Credentials Provider 32 bit msi

 

Configuration

Run the installer on your machine (with admin rights) which will start the install wizard. Click Next on the first

screen.

 

Accept the default directory, or alter it if preferred and click Next.

 

Type in the IP address or host name of your LogonBox server and click Next.

 

The install files should now be extracted. Click Finish to complete the installation.

 

Altering the reset link text

It is possible to quickly alter the text that users are prompted for on their login screens for unlocking their accounts or resetting their passwords. To do this you'll need to edit the values in the registry. Go to HKEY_LOCAL_MACHINE/SOFTWARE/Nervepoint Technologies/Access Manager and alter either AccountUnlockText or PasswordResetText.

 

Silent install options

The Windows login client can also be installed from the command line allowing you to push this out via a group policy update, to install the client specify the LogonBox hostname (note this must be done with admin privileges):

 

For the Executable

creds-provider-windows-x64-2.0.3.exe -q -VserverURL=<hostname>

Replacing <hostname> with your own hostname or IP i.e. test.logonbox.com. (Note that this is a host only and not a URL as the parameter seems to imply.

 

Additional command line options can be found by running the exe with the -h switch like so, creds-provider-windows-x64-2.0.3.exe -h.

 

For the MSI

creds-provider-windows-x64-2_3_0.msi /quiet PARAMETER="-VserverURL=<hostname>"

Replacing <hostname> with your own hostname or IP i.e. test.logonbox.com. (Note that this is a host only and not a URL as the parameter seems to imply.

 

Additional command line options can be found by running the msi with the /? switch like so, creds-provider-windows-x64-2.0.3.msi /?.

 

Creating a transforms file for the MSI

For deploying silent installs via a GPO, you need a transforms file (MST) to pass the server URL parameter.

Here is an example using the tool called Orca.

 

Run Orca and go to File->Open and open the Credentials Provider MSI file.

Select the Transform->New Transform menu.

Select the Property table.

 

Right click in the main window and select Add Row.

For the Property, add PARAMETER.

For the Value, add -VserverURL=admin.logonbox.com

(replacing admin.logonbox.com with your own server's hostname)

 

Now you can click Transform->Generate Transform and save out your MST file which can be used in a GPO.

Alternatively, you could select File->Save Transformed As and write out a new version of the MSI with this transform applied.