When using a custom LSA authentication package, lastlogon time is not updated RRS feed

  • Question

  • My company has an SSH2 server that provides a custom LSA authentication module.  This allows our product to support public key authentication to a Windows machine.  Since we don't have a password when we do public key authentication, we are performing a network logon, not an interactive logon.  When we do this, the lastlogon time is not updated.  This would be the usri4_last_logon element of the USER_INFO_4 struct.  We can query this information using NetUserGetInfo(), but there doesn't seem to be any way for us to set this information.  It also appears that logons using Kerberos Protocol Transition also suffer from this.

    Is manually setting the last logon time possible?  Is there a setting on the machine that controls whether or not that value is updated?

    Thank you,

    Daniel Prevett

    Vandyke Software, Inc.

    Monday, March 25, 2019 10:38 PM