WinAdminPassword 1.5
====================
# Changelog
====================
1.5 Final
* --cron Bug : Add path for dmidecode and chpasswd
* Change Date format "Hour.Year.Month.Day" ex : "9.2011.Aug.18" for 2011 August 18 at 9am
* Add --cron for Microsoft Windows systems
* Add --time parameter for --printpassword
* Add one letter parameters
* Clean code
* Compatible with Perl 5.8
* Add setup for 64 bits Microsoft Windows systems
* Add RPM file
* Add DEB file
* Update manual and README
* Delete GLPI plugin. Get it here : https://forge.indepnet.net/projects/winadminpassword
* Works on Debian 6, Ubuntu 11.04, CentOS 5, RHEL 5, Fedora 15, OpenSuze 11.4,
Mandriva 2010.2, Microsoft Windows XP and Microsoft Windows 7 (x86 and x64)
# Description
====================
Tool for the deployment of unique passwords for Windows and Unix systems. It is based on the serial number
of computers and a secret key. The advantage is that no password is stored in a database and
you can display them with a GLPI plugin, Webmin...
# Installation
====================
Prerequisistes :
* POSIX / GNU Linux/ Unix systems : Perl, Config::Crontab, Digest::SHA1, dmidecode and chpasswd
* Microsoft Windows systems : ActivePerl
Installation :
* Microsoft Windows x64 :
- perl is not installed : Execute "Win32\winadminpassword-1.5-x64.exe" file
- Perl is already installed : Execute "Win32\winadminpassword-1.5-noarch-without-perl.exe" file
* Microsoft Windows x86 :
- Perl is not installed : Execute "Win32\winadminpassword-1.5-x86.exe" file
- Perl is already installed : Execute "Win32\winadminpassword-1.5-noarch-without-perl.exe" file
For Microsoft Windows, you can deploy packages with the silent parameter "/S".
(See GPO, Sysprep, PsExec, WPKG, OCSInventory NG, FusionInventory, Uranos...)
* RHEL/CentOS/Fedora :
- install perl-Config-Crontab RPM : http://pkgs.org/search/?keyword=perl-Config-Crontab
> cd RPM
> yum install winadminpassword-1.5-0.1.noarch.rpm
* OpenSuze :
> yast2 --install perl perl-Config-Crontab perl-Digest-SHA1 dmidecode
> cd RPM
> rpm -ivh winadminpassword-1.5-0.1.noarch.rpm
* Mandriva :
> urpmi perl perl-Config-Crontab perl-Digest-SHA1 dmidecode
> cd RPM
> rpm -ivh winadminpassword-1.5-0.1.noarch.rpm
* Debian/Ubuntu :
> apt-get install dmidecode libdigest-sha1-perl
> cd DEB
> dpkg -i libconfig-crontab-perl_1.33-1_all.deb
> dpkg -i winadminpassword_1.5_all.deb
* GNU Linux / BSD / POSIX :
- install perl : http://www.perl.org/
- install dmidecode : http://www.nongnu.org/dmidecode/
- install chpasswd
- install Config::Crontab : perl -MCPAN -e 'install Config::Crontab'
- install Digest::SHA1 : perl -MCPAN -e 'install Digest::SHA1'
- install WinAdminPassword :
> cd Others
> perl Makefile.PL
> make
> make install
Use :
> winadminpassword --help
> man winadminpassword
# Manual
====================
Usage
winadminpassword [-v] [-h] [--printserial] [--printpassword] [--changepassword] [-s serial] [-k secretkey]
[-u username] [-w password] [-l length] [-a algorith] [-r color] [-z size] [-j] [-o] [-t] [-d date]
[-x secondsecretkey] [-g] [--printdate]
Functions
-v, --version Displays the script version
-h, --help This information
-y, --printdate Print date in WinAdminPassword format
-m, --showserial, --printserial Print serial number of this computer
-p, --showpasswd, --printpassword Print password (-k and -l are mandatory)
-c, --chpasswd, --changepassword Change password for a user (-k, -u and -l are mandatory)
Options
-o, --verbose Print generated password when you use --changepassword function
-s, --serial=SERIAL Set the serial number
default : the serial number of computer where the script is executed
-k, --key=KEY The very secret key
-x, --skey, --secondkey=KEY The second key (optional but really useful with the GLPI plugin because
it is not stored in the database and it is requested each time to the passwords)
you can use a simple passphrase
-u, --user=USER Set the username of the local account to change his password
-w, --passwd, --password=PASSWORD Set the password if you don't want use the generated password
-l, --length=LENGTH Set the length of the generated password
-a, --algo=ALGO Set the algorithm for generating the hash that will be use to generate password
1 : \$key.\$serial
2 : \$serial\$key
3 : \$serial\$key\$serial
4 : \$key\$serial\$key
5 : \$key\$serial
default : 1
-j, --html Print the output of --printpassword in HTML
-r, --color=COLOR Set the print color for the html output
default : orange
-z, --size=SIZE Set the size for the html output
default : 16
-t, --time Add the current time to the hash, in order to generate a password
based on the system time
-g, --cron Add the command line to cron, it will be executed every
hours. (Very useful with -t)
-d, --date=DATE Set the date to find a timed generated password
use "10.2011.Feb.12" for Feb 12 2011 at 10am
Months : Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
Hours : 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23
!! On unix or GNU Linux systems, you must despecialize $ charaters with \ in your command line
Samples
PrintSerial :
# winadminpassword --printserial
print the serial number of this computer
PrintDate :
# winadminpassword --printdate
print the current system date in WinAdminPassword format
ChangePassword :
# winadminpassword --changepassword -k "myverysecretkey" -l "12" -u "Administrator" -o
change the password for Administrator account. The password size will be 12.
The output will print the generated password
# winadminpassword --changepassword -k "myverysecretkey" -l "12" -u "root" -t
change the password for root account. The password size will be 12.
The generated password will be based on systemtime. Use -d parameter to find it.
# winadminpassword --changepassword -k "myverysecretkey" -l "12" -u "root" -t -g
add this command to cron. Every hour the password will be changed. Use -d parameter to find it.
PrintPassword :
# winadminpassword --printpassword -a "2" -s "AB4528CF" -k "myverysecretkey" -l "18" -j -r "red" -z "12"
print the generated password with myverysecretkey and the second algorithm for the
AB4528CF serial. The output will be in HTML in red and with size 12.
# winadminpassword --printpassword -l 12 -s "AB4HGD" -k "myverysecretkey" -x "hello" -d "3.2011.Jul.28"
print the result of timed generated password at 3 Hours in July 28 2011.
The second secret key is "hello".
# FIND PASSWORDS
====================
You can place winadminpassword script on Webmin software and call the command :
- winadminpassword --printpassword -k "myverysecretkey" -s "$getserialfromform" -l "12" -j
You also have a GLPI plugin if you want to print them in GLPI (https://forge.indepnet.net/projects/winadminpassword)
# DEPENDENCIES
====================
This module requires these other modules and libraries:
Config::Crontab
Digest::SHA1
# COPYRIGHT AND LICENCE
====================
# WinAdminPassword - A utility to deploy unique passwords for Microsoft Windows and Unix systems. #
# It is based on the serial number of computers and a private key. #
# The advantage is that no password is stored in a database. #
# Copyright (C) 2011 Nicolas BOURGES #
#
# This program is free software: you can redistribute it and/or modify #
# it under the terms of the GNU General Public License as published by #
# the Free Software Foundation, either version 3 of the License, or #
# (at your option) any later version. #
#
# This program is distributed in the hope that it will be useful, #
# but WITHOUT ANY WARRANTY. without even the implied warranty of #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
# GNU General Public License for more details. #
#
# You should have received a copy of the GNU General Public License #
# along with this program. If not, see <http://www.gnu.org/licenses/>. #
Download Latest Version
winadminpassword-1.5.zip (50.5 MB)
