<meta charset="UTF-8">
<meta name="robots" content="noindex,nofollow" />
<link rel="shortcut icon" type="image/x-icon" href="/wiki/images/favicon.ico" />
<link rel="icon" type="image/x-icon" href="/wiki/images/favicon.ico" />

<pre>
!!! Overview
[{$pagename}] is an [API] within the Windows [SDK] to allow the [Windows Client Authentication Architecture] to be customized by implementing and registering a [{$pagename}] with [Winlogon] which provides for the [Interactive] [Windows Logon Type].[{$pagename}] are the primary [Authentication Mechanism] for user authentication for [Windows 10] and are currently are the only method for users to prove their identity which is required for logon and other system authentication scenarios. With [Windows 10] and the introduction of [Microsoft Passport], [{$pagename}]s are more important than ever; they will be used for authentication into [apps], [websites], and more.

[{$pagename}] is used when [Winlogon] wants to obtain [credentials], the Windows Logon UI queries each [{$pagename}] for the number of [credentials] that it wishes to enumerate. After all [{$pagename}]s have enumerated their &quot;tiles&quot;, the Logon UI displays them to the user. The user then interacts with a &quot;tile&quot; to supply the necessary [credentials]. The Logon UI submits these credentials for [authentication].  

Multiple [{$pagename}]s can be installed on a single machine and Each [{$pagename}] may have multiple [Authentication Mechanisms] referred to as &quot;Tiles&quot; when presented to the user.

!! Credential provider [architecture]
The following table lists the components that are included in the [Windows Logon Type] [interactive] [Windows Logon] [architecture] of the Windows Server and [Windows|Microsoft Windows] [Operating System].
* [Winlogon] - Provides the [Windows Logon Type] [interactive] sign-in infrastructure.
* [Credential UI|Windows.Security.Credentials.UI] - Provides interactive [GUI] rendering.
* [CredSSP] ([password] and [Smart Card]) - Describes credential information and serializing credentials using the [Security Support Provider] ([SSP])
* [Local Security Authority] ([LSA]) - Processes sign-in [credentials]
* [Windows Authentication Package] - Includes [NTLM] and the [Kerberos] protocol. Communicates with server [Windows Authentication Package] to [Authentication] users.

The [Windows Logon Type] [interactive] [Windows Logon] in Windows begins when the user presses CTRL+ALT+DEL. The CTRL+ALT+DEL key combination is called a [Secure Attention Sequence] ([SAS]). To keep other programs and processes from using it, [Winlogon] registers this sequence during the boot process.

After receiving the [SAS], the [Windows.Security.Credentials.UI] then generates the [Windows Logon] tile from the information received from the registered [{$pagename}].

!! [System Credential Providers|Security Support Provider]
[Microsoft] provides a variety of [{$pagename}]s referred to as &quot;[Security Support Providers]&quot; as part of [Microsoft Windows], such as 
* [password]
* [PIN]
* [Smart Card]
* [Windows Hello] ([Fingerprint recognition], [Facial recognition], and [Iris recognition]).

!! [Third-party] [{$pagename}]s
Other entities can write their own [{$pagename}]s and integrate them easily into [Microsoft Windows]. Each [Third-party] [{$pagename}] SHOULD include at least one &quot;[Security Support Providers]&quot; as one of the [Authentication Mechanisms] for a &quot;Tile&quot;.
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]

</pre>