[go: up one dir, main page]

CN110727490B - Windows account remote management method, device and storage medium - Google Patents

Windows account remote management method, device and storage medium Download PDF

Info

Publication number
CN110727490B
CN110727490B CN201910885669.6A CN201910885669A CN110727490B CN 110727490 B CN110727490 B CN 110727490B CN 201910885669 A CN201910885669 A CN 201910885669A CN 110727490 B CN110727490 B CN 110727490B
Authority
CN
China
Prior art keywords
user
login
password
account
layer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910885669.6A
Other languages
Chinese (zh)
Other versions
CN110727490A (en
Inventor
林琪琛
覃芳
王丹
赵楚旋
何浩
曹晓能
徐乐乐
张润青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ping An Technology Shenzhen Co Ltd
Original Assignee
Ping An Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ping An Technology Shenzhen Co Ltd filed Critical Ping An Technology Shenzhen Co Ltd
Priority to CN201910885669.6A priority Critical patent/CN110727490B/en
Publication of CN110727490A publication Critical patent/CN110727490A/en
Application granted granted Critical
Publication of CN110727490B publication Critical patent/CN110727490B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/451Execution arrangements for user interfaces
    • G06F9/452Remote windowing, e.g. X-Window System, desktop virtualisation
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/46Multiprogramming arrangements
    • G06F9/54Interprogram communication
    • G06F9/547Remote procedure calls [RPC]; Web services

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Human Computer Interaction (AREA)
  • Computer Hardware Design (AREA)
  • Information Transfer Between Computers (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The invention provides a Windows account remote management method, a device and a computer readable storage medium, wherein the method comprises the following steps: the calling layer obtains instruction information of a user based on an access event of the client; the calling layer generates a control instruction and data parameters according to the instruction information; the calling layer transmits the control instruction and the data parameter to the bottom layer after the control instruction and the data parameter are transferred by the proxy layer; the bottom layer generates a command execution program according to the control command and the data parameter; the local Windows host computer executes the command execution program to realize remote management of the local Windows host account. And establishing a three-layer framework comprising a calling layer, a proxy layer and a bottom layer, realizing the connection between the client and the local Windows host, and realizing account addition, deletion, password modification and remote login of the local Windows host by setting corresponding instructions and programs in the calling layer, the proxy layer and the bottom layer.

Description

Windows account remote management method, device and storage medium
Technical Field
The present invention relates to the field of Windows account management technologies, and in particular, to a method and apparatus for remote management of Windows accounts, and a computer readable storage medium.
Background
Remote control means that a manager dials in different places through a computer network or both parties access the Internet and the like to communicate with a controlled computer, the desktop environment of the controlled computer is displayed on the computer, and the remote computer is configured, software installed, modified, remotely accessed and the like through a local computer. Remote control is typically done via the internet. The computer at the different place is the sending end of the control instruction, called the main control end or the client terminal, and the controlled computer at the local place is called the controlled end or the server end. The remote "distance" is different from the remote "distance", and the master control end and the controlled end can be located in the same room of the same local area network, or can be two or more computers connected to the Internet and located at any positions.
In the traditional remote login mode, before the host at the controlled end is remotely controlled, the controlled host is firstly required to be logged in through manual operation of a local manager, and then the host can be logged in and accessed through the mode of remote login, so that the mode is complex in operation, low in efficiency and severely wastes human resources.
In addition, in order to prevent important information of the local enterprise from being stolen, many applications of the local enterprise are arranged in an internal network, the network of an external user cannot be directly reached, but the user has a strong demand to use the internal applications, and the local enterprise also hopes to provide some local application services for the external client under the condition of ensuring the data security of the local host, so that the benefit of the local enterprise is increased.
In addition, because the number of users accessing the local enterprise host is large, and the application services on the local host that different users need to access are different, different accounts need to be established for different users, and only corresponding application services need to be configured for each account. However, the addition, deletion and password modification of the traditional Windows account are completed through manual operation of a local manager, the Windows account cannot be automatically added to a local host according to the wish of a remote user, and further, the purposes of newly adding and deleting the Windows user or modifying the password at any time and any place cannot be achieved, so that the efficiency of the local Windows account management work is seriously affected.
Based on the above problems, there is a need for a method for managing Windows accounts, which can implement new or deletion of Windows accounts, password modification and remote login to a local Windows host at any time and any place.
Disclosure of Invention
The invention provides a remote management method for Windows accounts, an electronic device and a computer storage medium, which mainly aim to realize the connection of a client and a local Windows host by establishing a three-layer framework comprising a calling layer, a proxy layer and a bottom layer, and realize account addition, deletion, password modification and remote login of the local Windows host by setting corresponding instructions and programs on the calling layer, the proxy layer and the bottom layer.
To achieve the above object, the present invention provides an electronic device including: the system comprises a memory, a processor and a Windows account remote management program which is stored in the memory and can run on the processor, wherein the Windows account remote management program realizes the following steps when being executed by the processor:
acquiring instruction information based on access events of clients at a calling layer;
generating a control instruction and a data parameter at the calling layer according to the instruction information;
transmitting the control instruction and the data parameter to a bottom layer after the call layer is transferred by the proxy layer;
And generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable the local Windows host to execute the command execution program and realize remote management of the local Windows host account.
Preferably, the call layer, the proxy layer and the bottom layer together form a Windows account management framework, wherein the call layer is deployed in a server communicated with the client internet, the proxy layer is deployed in a private network, and the bottom layer is deployed in the local Windows host;
a command generating program is deployed at the calling layer, a command transferring program is deployed at the proxy layer,
And generating the control instruction and the data parameter based on the command generating program at the calling layer according to the instruction information, and transmitting the control instruction and the data parameter to the bottom layer based on the command transferring program at the proxy layer.
Preferably, the private network is a dedicated line connection between the calling layer and the bottom layer;
the information transmission mode of the private network is unidirectional transmission.
Preferably, the instruction information includes a user management type and user management data; the user management types are divided into four types of user addition types, user deletion types, password modification types and remote login types, and the user management data comprise application names, login passwords and new passwords;
wherein, different user management types correspond to different user management data;
And generating corresponding control instructions and data parameters according to the user management type at the call layer, and generating corresponding command execution programs according to the control instructions and the data parameters at the bottom layer so as to enable the local Windows host to execute the command execution programs and perform corresponding remote management on the local Windows host account.
Preferably, if the user management type is a user addition type, the user management data is an application name;
Generating a user adding control instruction at the calling layer according to the user adding type, and generating an initial user name and an initial password as data parameters according to the application name;
Generating a user addition command execution program at the bottom layer according to the user addition control instruction, the initial user name and the initial password, so that the local Windows host machine executes the user addition command execution program to generate an account taking the initial user name as the user name and the initial password as the password;
if the user management type is a user deletion type, the user management data is a login name and a login password;
generating a user deletion control instruction at the calling layer according to the user deletion type, and taking the login name and the login password as the data parameters;
Generating a user deletion command execution program at the bottom layer according to the user deletion control instruction, the login name and the login password, so that the local Windows host machine can execute the user deletion command execution program to search an account matched with the login name and the login password and delete the account;
If the user management type is a password modification type, the user management data is a login name, a login password and a new password;
generating a password modification control instruction at the call layer according to the password modification type, and taking the login name, the login password and the new password as the data parameters;
Generating a password modification command execution program at the bottom layer according to the password modification control command, the login name, the login password and the new password, so that the local Windows host machine can execute the password modification command execution program to search an account matched with the login name and the login password and carry out password modification on the password of the account according to the new password.
Preferably, a remote login channel is arranged between the local Windows host and the client;
If the user management type is a remote login type, the user management data is a login name and a login password;
Generating a remote login control instruction according to the remote login type at the calling layer, and setting the login name and the login password as the data parameters;
Generating a remote login command execution program at the bottom layer according to the remote login control instruction, the login name and the login password, so that the local Windows host machine executes the remote login command execution program to log in an account matched with the login name and the login password and opens the remote login channel; the remote login channel is used for the client to realize remote login and access to the local Windows host.
Preferably, an encrypted network transmission protocol is set in the remote login channel, the encrypted network transmission protocol is related to the login name and the login password, and the remote login channel is used for the client to realize remote login and access to the local Windows host according to the login name and the login password.
Preferably, the instruction information further includes a protocol type, where the protocol type is related to an application service provided by the local Windows host;
If the user management type is a user adding type;
Generating a user adding control instruction at the calling layer according to the user adding type, and generating an initial user name and an initial password as data parameters according to the application name and the protocol type;
generating a user adding command execution program at the bottom layer according to the user adding type, the initial user name and the initial password, so that the local Windows host machine executes the user adding command execution program to generate an account with the initial user name as the user name and the initial password as the password, and configuring application services related to the protocol type for the account.
In addition, in order to achieve the above object, the present invention also provides a remote management method for Windows accounts, which includes:
acquiring instruction information based on access events of clients at a calling layer;
generating a control instruction and a data parameter at the calling layer according to the instruction information;
transmitting the control instruction and the data parameter to a bottom layer after the call layer is transferred by the proxy layer;
and generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable a local Windows host to execute the command execution program and realize remote management of the local Windows host account.
In addition, in order to achieve the above object, the present invention further provides a computer readable storage medium, where the computer readable storage medium includes a Windows account remote management program, and when the Windows account remote management program is executed by a processor, the steps in the aforementioned Windows account remote management method are implemented.
The remote management method, the electronic device and the computer readable storage medium for the Windows account, provided by the invention, realize the connection between the client and the local Windows host by establishing a three-layer framework comprising the calling layer, the proxy layer and the bottom layer, and obviously improve the efficiency of local Windows account management work by setting corresponding instructions and programs on the calling layer, the proxy layer and the bottom layer to realize account addition, deletion, password modification and remote login of the local Windows host at any time and any place. In addition, the agent layer is deployed in the proprietary network, so that external personnel can be effectively prevented from stealing important data information on the local Windows host.
Drawings
FIG. 1 is a schematic diagram of an electronic device according to a preferred embodiment of the present invention;
FIG. 2 is a flowchart of a preferred embodiment of a method for remote management of Windows accounts according to the present invention;
FIG. 3 is a schematic diagram of data access of a Windows account remote management method according to the present invention;
fig. 4 is a schematic diagram of a module inside a Windows account remote management program provided by the invention.
The achievement of the objects, functional features and advantages of the present invention will be further described with reference to the accompanying drawings, in conjunction with the embodiments.
Detailed Description
It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the invention.
The invention provides a Windows account remote management method, which is applied to an electronic device 70. Referring to fig. 1, a schematic structure of an electronic device 70 according to a preferred embodiment of the invention is shown.
In this embodiment, the electronic device 70 may be a terminal device with an operation function, such as a server, a smart phone, a tablet computer, a portable computer, or a desktop computer.
The electronic device 70 includes: a processor 71 and a memory 72.
Memory 72 includes at least one type of readable storage medium. At least one type of readable storage medium may be a non-volatile storage medium such as flash memory, a hard disk, a multimedia card, a card memory, etc. In some embodiments, the readable storage medium may be an internal storage unit of the electronic device 70, such as a hard disk of the electronic device 70. In other embodiments, the readable storage medium may also be an external memory of the electronic device 1, such as a plug-in hard disk provided on the electronic device 70, a smart memory card (SMART MEDIA CARD, SMC), a Secure Digital (SD) card, a flash memory card (FLASH CARD), or the like.
In this embodiment, the readable storage medium of the memory 72 is typically used to store a Windows account remote management program 73 installed on the electronic device 70. The memory 72 may also be used to temporarily store data that has been output or is to be output.
The processor 72 may in some embodiments be a central processing unit (Central Processing Unit, CPU), microprocessor or other data processing chip for running program code or processing data stored in the memory 72, such as the Windows account remote management program 73, etc.
In some embodiments, the electronic device 70 is a terminal device of a smart phone, tablet computer, portable computer, or the like. In other embodiments, the electronic device 70 may be a server.
Fig. 1 shows only an electronic device 70 having components 71-73, but it should be understood that not all of the illustrated components are required to be implemented and that more or fewer components may be implemented instead.
Optionally, the electronic device 70 may further comprise a user interface, which may comprise an input unit such as a Keyboard (Keyboard), a voice input device such as a microphone or the like with voice recognition function, a voice output device such as a sound box, a headset or the like, and optionally a standard wired interface, a wireless interface.
Optionally, the electronic device 70 may also include a display, which may also be referred to as a display screen or display unit. In some embodiments, the display may be an LED display, a liquid crystal display, a touch-control liquid crystal display, an Organic Light-Emitting Diode (OLED) touch device, or the like. The display is used to display information processed in the electronic device 70 and to display a visual user interface.
Optionally, the electronic device 70 may also include a touch sensor. The area provided by the touch sensor for a user to perform a touch operation is referred to as a touch area. Further, the touch sensor herein may be a resistive touch sensor, a capacitive touch sensor, or the like. The touch sensor may include not only a contact type touch sensor but also a proximity type touch sensor. Further, the touch sensor may be a single sensor or may be a plurality of sensors arranged in an array, for example.
The area of the display of the electronic device 70 may be the same as or different from the area of the touch sensor. Optionally, a display is layered with the touch sensor to form a touch display screen. The device detects a touch operation triggered by a user based on a touch display screen.
Optionally, the electronic device 70 may further include Radio Frequency (RF) circuitry, sensors, audio circuitry, etc., which are not described herein.
In addition, to facilitate understanding of the present invention, the present invention also provides a flowchart of a preferred embodiment of the method for remote management of Windows accounts (as shown in fig. 2) and a schematic view of an access route in the method for remote management of Windows accounts (as shown in fig. 3).
In the embodiment of the apparatus shown in fig. 1, an operating system and a Windows account remote management program 73 may be included in the memory 72 as a computer storage medium; the processor 71 performs the following steps when executing the Windows account remote management program 73 stored in the memory 72:
S110: when a client accesses the calling layer, acquiring instruction information of the user based on an access event of the client at the calling layer; the calling layer is deployed in a server communicated with the client Internet.
In order to facilitate the call layer to obtain instruction information of the user, the call layer may establish a service website on the internet. The client can realize man-machine interaction by using the client to access the service website, and input corresponding instruction information at the corresponding position of the website according to own requirements. The calling layer obtains instruction information input by the client through the website, wherein the client terminal can be a mobile phone, a PAD, a personal computer and the like.
Specifically, the instruction information may include a user management type and user management data, where the user management type relates to an account remote management type that the user wants to perform on a local Windows host, and mainly includes four types of user addition, user deletion, password modification and remote login. The user management data is related data required by the user to remotely manage some account or accounts of some kind, including an application name, a login password and a new password, where the application name is one end character string (e.g. zhangsan) which is set by the new user for adding an account on the local Windows host, the login name and the login password are data required by the old user for logging in the local Windows host, and the new password is used for modifying the password of the account on the local Windows host by the user.
It should be noted that different user management types correspond to different user management data, for example, if the user management type is a user addition type, the user management data is an application name; if the user management type is the user deletion type, the user management data is a login name and a login password; if the user management type is the password modification type, the user management data is a login name, a login password and a new password; if the user management type is a remote login type, the user management data is a login name and a login password.
S120: and generating a control instruction and a data parameter according to the instruction information at the calling layer.
Specifically, different types of control instructions are generated at the call layer according to the specific type of the user management type, and data parameters matched with the control instructions are generated according to the user management data.
For example, when the user management type is the user addition type and the user management data is the application name, a user addition control instruction is automatically generated at the calling layer according to the user addition type, and an initial user name and an initial password matched with the application name are automatically generated as data parameters according to the application name.
For example, application name zhangsan, a combination of number and application name (similar to 1zhangsan 556) is automatically generated as an initial user name (the initial user name is not repeated with the existing user name) at the calling layer, and then an initial password (similar to ADKD # 5623) composed of letters, numbers and special symbols is automatically generated.
When the user management type is the user deletion type and the user management data is the login name and the login password, automatically generating a user deletion control instruction according to the user deletion type at the calling layer, and taking the login name and the login password as data parameters matched with the user deletion control instruction.
When the user management type is the password modification type, and the user management data is a login name, a login password and a new password, automatically generating a password modification control instruction according to the password modification type at the calling layer, and taking the login name, the login password and the new password as data parameters matched with the password modification instruction.
When the user management type is a remote login type and the user management data is a login name and a login password, automatically generating a remote login control instruction according to the remote login type at the calling layer, and setting the login name and the login password as data parameters matched with the remote login control instruction.
S130: the call layer firstly transmits the control instruction and the data parameter to the proxy layer, and the control instruction and the data parameter matched with the control instruction are transmitted to the bottom layer after being transferred by the proxy layer; the proxy layer is deployed in a server in the private network, and the bottom layer is deployed in a local Windows host to be managed.
Specifically, the call layer, the proxy layer and the bottom layer together form a Windows account management framework, a command generation program is deployed on the call layer, and a command transfer program is deployed on the proxy layer; the control instruction and the data parameter are generated based on the command generating program at the calling layer according to the instruction information, the control instruction and the data parameter are sent to the bottom layer based on the command transferring program at the proxy layer, and the command generating program, the command transferring program and the command executing generating program are all written in java languages, so that the automatic transmission of various information can be realized by only calling the corresponding java programs among the calling layer, the proxy layer and the bottom layer.
It should be noted that, because the calling layer is directly connected with the internet, and the local windows host stores a lot of important data information, by setting a proxy layer between the calling layer and the bottom layer as a transfer station, the calling layer and the bottom layer can be effectively isolated, and other people can be prevented from stealing the important data information on the local host.
It should be further noted that, unlike the internet, a private network is a private line connection between two enterprises or servers, and a private line is a permanent private telephone line connection between two points. Unlike a typical dial-up connection, the dedicated line is always connected. The greatest advantage of this connection is security. Except for those two businesses that are legally connected to the private network, no one or more other people or businesses can enter the private network. Therefore, the invention realizes the special line connection between the calling layer and the bottom layer through the special network, and the proxy layer is arranged in the special network to realize the transfer of information, thereby effectively ensuring the safety and the integrity of the information flow.
In addition, in order to further ensure the security and the high efficiency of the local Windows user management, the transmission mode of the private network may be set to unidirectional transmission, that is, the information is transmitted only from the call layer to the proxy layer, and only from the proxy layer to the bottom layer, and the reverse information transmission cannot be performed.
S140: and generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable the local Windows host to execute the command execution program and realize remote management of the local Windows host account.
Specifically, different types of command execution programs are generated at the bottom layer according to different types of control instructions and data parameters.
For example, a user addition command execution program is generated at the bottom layer according to a user addition control instruction, an initial user name and an initial password; generating a user deletion command execution program at the bottom layer according to the user deletion control instruction, the login name and the login password; generating a password modification command execution program at the bottom layer according to the password modification control command, the login name, the login password and the new password; and generating a remote login command execution program at the bottom layer according to the remote login control instruction, the login name and the login password.
Further, the local Windows host executes different types of command execution programs to perform different types of remote management on the local Windows host account.
For example, the local Windows host executes the user addition command execution program to automatically generate an account with the initial user name as the user name and the initial password as the password; the local Windows host executes the user deletion command execution program to automatically search the account matched with the login name and the login password and delete the account; the local Windows host executes the password modification command execution program to automatically search the account matched with the login name and the login password and carry out password modification on the password of the account according to the new password.
The local Windows host executes the remote login command execution program to automatically log in an account matched with the login name and the login password and open a remote login channel; the client realizes remote login and access to the local Windows host through the remote login channel.
It should be noted that, the remote login channel is kept in a closed state in general, and is automatically opened only after the local Windows host executes the remote login command execution program, and is automatically closed after the user accesses the local Windows host. By setting the remote login channel, the local Windows host can be isolated from the Internet at ordinary times, and the remote login channel can be opened only when a user performs remote login, so that other people can be prevented from stealing important data information on the local Windows host through the Internet.
In addition, in order to further prevent others from stealing important data information on the local Windows host when the user accesses the local Windows host through the telnet channel, an encrypted network transmission protocol may be set in the login management channel, for example: and the secure shell protocol (SSH), the encrypted network transmission protocol is related to the login name and the login password, and a user uses the login name and the login password as protocol keys to realize remote login and access to the local Windows host through a remote management channel.
In a preferred embodiment of the present invention, the instruction information may further include a protocol type, where the protocol type is related to an application service provided by the local Windows host, such as a big data service, a special software application service, a database access service, etc., and different protocol types correspond to different application services. The user can sign different protocol types on the service website according to the application service required by the user.
If the user management type is the user addition type; the calling layer generates a user adding control instruction according to the user adding type, and generates an initial user name and an initial password as data parameters according to the application name and the protocol type; the bottom layer generates a user adding command execution program according to the user adding type, the initial user name and the initial password; the local Windows host executes the user addition command execution program to automatically generate an account with the initial user name as the user name and the initial password as the password, and configures application services related to the protocol type for the account. It should be noted that, only the application service corresponding to the protocol type is configured on the account, so that not only can the resources on the local Windows host be saved, but also the user can be further prevented from accessing some data information which is not related to the local Windows host, and the security of the local data information is improved.
In addition, in order to facilitate the management of the user, corresponding protocol residual time can be set for different protocol types on the local Windows host, the protocol residual time is automatically updated along with time, and when the corresponding protocol residual time of an account matched with the protocol type on the local Windows host is zeroed, the local Windows host automatically deletes the account.
In addition, a user information base can be set in the call layer, and the user information base is used for storing various information of the user, such as application name, user name, password, protocol type, protocol remaining time and the like. And then generating a control instruction and data parameters according to the instruction information and sending the control instruction and the data parameters to the proxy layer. In practical application, a user can access the user information base through a service website, so that various information of the user can be queried and watched.
Furthermore, a remote login group can be set on the local Windows host, the remote login group is a database similar to the user information base and containing all user names and passwords of the user names which can log in the local Windows host, and the remote login group can execute different types of command execution programs according to the local Windows host to update in real time. By setting the remote login group, the windows user can be managed remotely, and the data information loss of the user can be prevented when the user information base of the calling layer is damaged.
The electronic device 1 provided in the above embodiment realizes the connection between the client and the local Windows host by establishing a three-layer architecture including a call layer, a proxy layer and a bottom layer, and realizes account addition, deletion, password modification and remote login of the local Windows host at any time and any place by setting corresponding instructions and programs in the call layer, the proxy layer and the bottom layer, thereby remarkably improving the efficiency of local Windows account management work. In addition, the agent layer is deployed in the proprietary network, so that external personnel can be effectively prevented from stealing important data information on the local Windows host.
In other embodiments, windows account remote management program 73 may also be partitioned into one or more modules, one or more modules being stored in memory 72 and executed by processor 71 to complete the present invention. The invention may refer to a series of computer program instruction segments capable of performing a specified function. Referring to FIG. 3, a program module diagram of a preferred embodiment of the Windows account remote management program 73 of FIG. 1 is shown. The Windows account remote manager 73 may be partitioned into: an instruction information acquisition module 74, a control instruction and data parameter generation module 75, a command execution program generation module 76, and a command execution program execution module 77. The functions or operational steps performed by the modules 74-77 are similar to those described above and are not described in detail herein, for example, wherein:
An instruction information obtaining module 74, configured to obtain instruction information of a user based on an access event of a client at a call layer; the calling layer is deployed in a server communicated with the client Internet.
A control instruction and data parameter generating module 75, configured to generate a control instruction and a data parameter according to the instruction information at the call layer; the calling layer transmits the control instruction and the data parameter to the bottom layer after being transferred by the proxy layer.
The command execution program generating module 76 is configured to generate a command execution program at the bottom layer according to the control command and the data parameter.
The command execution program execution module 77 is configured to execute a command execution program by a local Windows host to implement remote management of a local Windows host account.
In addition, the invention also provides a Windows account remote management method. Referring to fig. 2, a flowchart of a preferred embodiment of a method for remote management of Windows accounts according to the present invention is shown. The method may be performed by an apparatus, which may be implemented in software and/or hardware.
In this embodiment, the remote management method for Windows accounts includes: step S110-step S140.
S110: acquiring instruction information based on access events of clients at a calling layer;
S120: generating a control instruction and a data parameter at a calling layer according to the instruction information;
s130: transmitting the control instruction and the data parameter to the bottom layer from the calling layer after being transferred by the proxy layer;
S140: and generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable the local Windows host to execute the command execution program and realize remote management of the local Windows host account.
In addition, the embodiment of the invention also provides a computer readable storage medium, wherein the computer readable storage medium comprises a Windows account remote management program, and the Windows account remote management program realizes the following operations when being executed by a processor:
s110: acquiring instruction information based on access events of clients at a calling layer;
S120: generating a control instruction and a data parameter at a calling layer according to the instruction information;
s130: transmitting the control instruction and the data parameter to the bottom layer from the calling layer after being transferred by the proxy layer;
S140: and generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable the local Windows host to execute the command execution program and realize remote management of the local Windows host account.
The specific embodiments of the computer readable storage medium provided by the invention are substantially the same as the specific embodiments of the Windows account remote management method and the electronic device, and are not repeated here.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, apparatus, article, or method that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, apparatus, article, or method. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, apparatus, article, or method that comprises the element.
The foregoing embodiment numbers of the present invention are merely for the purpose of description, and do not represent the advantages or disadvantages of the embodiments. From the above description of the embodiments, it will be clear to those skilled in the art that the above-described embodiment method may be implemented by means of software plus a necessary general hardware platform, but of course may also be implemented by means of hardware, but in many cases the former is a preferred embodiment. Based on such understanding, the technical solution of the present invention may be embodied essentially or in a part contributing to the prior art in the form of a software product stored in a storage medium (e.g. ROM/RAM, magnetic disk, optical disk) as described above, comprising instructions for causing a terminal device (which may be a mobile phone, a computer, a server, or a network device, etc.) to perform the method according to the embodiments of the present invention.
The foregoing description is only of the preferred embodiments of the present invention, and is not intended to limit the scope of the invention, but rather is intended to cover any equivalents of the structures or equivalent processes disclosed herein or in the alternative, which may be employed directly or indirectly in other related arts.

Claims (9)

1. A remote management method for Windows accounts, which is applied to an electronic device, and is characterized in that the method comprises the following steps:
acquiring instruction information based on access events of clients at a calling layer;
generating a control instruction and a data parameter at the calling layer according to the instruction information;
transmitting the control instruction and the data parameter to a bottom layer after the call layer is transferred by the proxy layer;
generating a command execution program at the bottom layer according to the control instruction and the data parameter so as to enable a local Windows host to execute the command execution program and realize remote management of a local Windows host account; wherein,
The call layer, the proxy layer and the bottom layer together form a Windows account management framework, wherein the call layer is deployed in a server communicated with the client Internet, the proxy layer is deployed in a private network, and the bottom layer is deployed in the local Windows host; the special network is a special line connection between the calling layer and the bottom layer, and the information transmission mode of the special network is unidirectional transmission.
2. The method of claim 1, wherein the Windows account remote management method,
A command generating program is deployed at the calling layer, a command transferring program is deployed at the proxy layer,
And generating the control instruction and the data parameter based on the command generating program at the calling layer according to the instruction information, and transmitting the control instruction and the data parameter to the bottom layer based on the command transferring program at the proxy layer.
3. The method of claim 1, wherein the Windows account remote management method,
The instruction information comprises a user management type and user management data; the user management types are divided into four types of user addition types, user deletion types, password modification types and remote login types, and the user management data comprise application names, login passwords and new passwords;
wherein, different user management types correspond to different user management data;
And generating corresponding control instructions and data parameters according to the user management type at the call layer, and generating corresponding command execution programs according to the control instructions and the data parameters at the bottom layer so as to enable the local Windows host to execute the command execution programs and perform corresponding remote management on the local Windows host account.
4. The method for remote management of Windows account according to claim 3, wherein,
If the user management type is a user adding type, the user management data is an application name;
Generating a user adding control instruction at the calling layer according to the user adding type, and generating an initial user name and an initial password as data parameters according to the application name;
Generating a user addition command execution program at the bottom layer according to the user addition control instruction, the initial user name and the initial password, so that the local Windows host machine executes the user addition command execution program to generate an account taking the initial user name as the user name and the initial password as the password;
if the user management type is a user deletion type, the user management data is a login name and a login password;
generating a user deletion control instruction at the calling layer according to the user deletion type, and taking the login name and the login password as the data parameters;
Generating a user deletion command execution program at the bottom layer according to the user deletion control instruction, the login name and the login password, so that the local Windows host machine can execute the user deletion command execution program to search an account matched with the login name and the login password and delete the account;
If the user management type is a password modification type, the user management data is a login name, a login password and a new password;
generating a password modification control instruction at the call layer according to the password modification type, and taking the login name, the login password and the new password as the data parameters;
Generating a password modification command execution program at the bottom layer according to the password modification control command, the login name, the login password and the new password, so that the local Windows host machine can execute the password modification command execution program to search an account matched with the login name and the login password and carry out password modification on the password of the account according to the new password.
5. The method for remote management of Windows account according to claim 3, wherein,
A remote login channel is arranged between the local Windows host and the client;
If the user management type is a remote login type, the user management data is a login name and a login password;
Generating a remote login control instruction according to the remote login type at the calling layer, and setting the login name and the login password as the data parameters;
Generating a remote login command execution program at the bottom layer according to the remote login control instruction, the login name and the login password, so that the local Windows host machine executes the remote login command execution program to log in an account matched with the login name and the login password and opens the remote login channel; the remote login channel is used for the client to realize remote login and access to the local Windows host.
6. The method of claim 5, wherein the Windows account remote management method,
And an encrypted network transmission protocol is arranged in the remote login channel, the encrypted network transmission protocol is related to the login name and the login password, and the remote login channel is used for a client to realize remote login and access to the local Windows host according to the login name and the login password.
7. The method of claim 4, wherein the Windows account remote management method,
The instruction information also comprises a protocol type, wherein the protocol type is related to an application service provided by the local Windows host;
If the user management type is a user adding type;
Generating a user adding control instruction at the calling layer according to the user adding type, and generating an initial user name and an initial password as data parameters according to the application name and the protocol type;
generating a user adding command execution program at the bottom layer according to the user adding type, the initial user name and the initial password, so that the local Windows host machine executes the user adding command execution program to generate an account with the initial user name as the user name and the initial password as the password, and configuring application services related to the protocol type for the account.
8. An electronic device, which is characterized in that, the electronic device includes: memory, a processor and a Windows account remote management program stored in the memory and executable on the processor, which when executed by the processor, implements the steps of the Windows account remote management method according to any one of claims 1 to 7.
9. A computer readable storage medium, wherein a Windows account remote management program is stored in the computer readable storage medium, and when the Windows account remote management program is executed by a processor, the steps of the Windows account remote management method according to any one of claims 1 to 7 are implemented.
CN201910885669.6A 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium Active CN110727490B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910885669.6A CN110727490B (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910885669.6A CN110727490B (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Publications (2)

Publication Number Publication Date
CN110727490A CN110727490A (en) 2020-01-24
CN110727490B true CN110727490B (en) 2024-09-06

Family

ID=69219195

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910885669.6A Active CN110727490B (en) 2019-09-19 2019-09-19 Windows account remote management method, device and storage medium

Country Status (1)

Country Link
CN (1) CN110727490B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114519184B (en) * 2022-04-20 2022-07-15 北京圣博润高新技术股份有限公司 Account number encryption method, account number encryption device, account number encryption equipment and medium based on Agent process

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104967609A (en) * 2015-04-28 2015-10-07 腾讯科技(深圳)有限公司 Intranet development server access method, intranet development server access device and intranet development server access system

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9069947B2 (en) * 2011-09-29 2015-06-30 Oracle International Corporation Privileged account manager, access management

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104967609A (en) * 2015-04-28 2015-10-07 腾讯科技(深圳)有限公司 Intranet development server access method, intranet development server access device and intranet development server access system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
NT网域用户帐号的远程管理;闫瑞锋 等;佳木斯大学学报(自然科学版);第19卷(第03期);第235-239页 *

Also Published As

Publication number Publication date
CN110727490A (en) 2020-01-24

Similar Documents

Publication Publication Date Title
CN108293045B (en) Single sign-on identity management between local and remote systems
CN111783055B (en) Account information management method and device and electronic equipment
US8844017B2 (en) Software firewall control
CN104660562A (en) Method, related device and system for information viewing
KR20150036323A (en) Security and data isolation for tenants in a business data system
US9998439B2 (en) Mobile device identify factor for access control policies
US20140130134A1 (en) Managing and Providing Access to Applications in an Application-Store Module
CN107277066A (en) Account management method, portable electric appts and account management system
US11722476B2 (en) Workflow service back end integration
US11930003B2 (en) Workflow service back end integration
US20180032618A1 (en) System and methods for retrieving raw data from unpredictable data sources
WO2015196979A1 (en) Web page information presentation method and system
WO2022053868A2 (en) Systems and methods for non-deterministic multi-party, multi-user sender-receiver authentication and non-repudiatable resilient authorized access to secret data
CN103036852B (en) A kind of method and device realizing network entry
CN102902934A (en) Integration and interactive operation system for unknowable host
US20180032634A1 (en) System and methods for retrieving and displaying data utilizing a content authoring toolkit (cat)
CN113312588A (en) Method, device, equipment and storage medium for managing operation authority of online document
CN116743496A (en) Device remote operation method, device, computer device and storage medium
CN110727490B (en) Windows account remote management method, device and storage medium
CN115567596A (en) Cloud service resource deployment method, device, equipment and storage medium
JP2015184827A (en) Browsing sharing server, browsing sharing system, browsing sharing method, browsing sharing program
JP2002016694A (en) Telephone number management system for portable telephone set using internet
US8826026B2 (en) Systems and methods for tracking electronic files in computer networks using electronic signatures
JP2009129312A (en) External sales support system and method
US20180032633A1 (en) System and methods for retrieving data using secondary xml file generation and multiple portlets

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant