Storing user related files in Windows Server 2003
-
Hi ! Me and a classmate are working on a degree project for our university. We are working on a program that identifies a user in the Active Directory on a Windows Server 2003 by its fingerprints. We are newbies when it comes to programming with ADSI but so far we have manged to write programs that can create and alter user and search the AD for users with a custom "hasFingerPrints"-attribute flag that we have created. We are using Visual C++ 6 The final program will be used when an application want the current user to verify its identity. When the user enrolls the program creates one or several binary template-files (depending on how many fingerprints the user registers) with encrypted information about the fingerprint. The fingerprint template files have a minimum size of 1kb but can be up to 4-8 kB if you enroll with a higher security level ... each user might also have 3-5 files ... one for each finger he enrolls. One problem is that the current identification algorithm needs the file to exist in a directory of some form ... What is the best way to store these files ? Should they be stored inside the AD-database ? for maximum security if so, how do you do that ? It would be great if there was a way to "attach" each fingerprint file to each user ... somehow Thanks in advance !