Hi, this is Pavel here, 15+ years of experience, mostly system/kernel-level and networking development for Windows.
In particular, I developed Windows-related components of some multi-factor auth solutions (CPs, GINA DLLs, subauth filters etc.).
>We want to create a custom Credential Provider[CP] for Windows OS [After Windows Vista. Ex-Windows 7,8,8.1,10, Windows Server 2003,
>onwards ] Login.
Windows Server 2003 is based on XP architecture, so doesn't employ CP. Do you need a GINA dll developed for that version of WS?
Also, as you need to support Win7, you need v1 Credentila Provider, right?
>This CP will be responsible for authenticating the user account[UserName/Pass] with OS and then before giving access to user
>it will connect to external server to send some HTTPS requests and receive response[JSON format].The user will be prompted with
>specific Login tile on the basis of HTTPS response. Finaly after verification the user will be given the access to machine.
It may be better to first make all the extra checks and then check default Windows creds (UN/Passwd), otherwise you can drive audit subsystem crazy.
>We also want to create the installer which will do the above work and some related information to securely store data
>[Some Keys which will be used in CP] in local system during installation.
Guess you will need to store some certs in the system (or other) store?
Thanks,
WBW,
Pavel.