Re: Does IsInRole() grab just Groups? Can I get Organizational Units?
From: Patrick.O.Ige (naijacoder_at_hotmail.com)
Date: 10/31/05
- Next message: Patrick.O.Ige: "Re: check if a user is a member of a particular group in active direct"
- Previous message: Patrick.O.Ige: "Re: ASP.NET 2.0 & FormsAuthentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 31 Oct 2005 15:45:43 +1100
Hmm.. As Joe Adviced i don't think u need OU's
What you need i think is ROLES.
Patrick
"Joe Kaplan (MVP - ADSI)" <joseph.e.kaplan@removethis.accenture.com> wrote
in message news:eiwxrJ9sFHA.3328@TK2MSFTNGP11.phx.gbl...
> Yes, you must do an LDAP query to get OU information. This seems like a
> weird thing to do though. Are you sure you need this?
>
> OUs are typically created to organize users for group policy and
delegation
> of administration. Making security decisions based on a user's OU isn't
the
> intent.
>
> Joe K.
>
> "Craig Vedur" <CraigVedur@discussions.microsoft.com> wrote in message
> news:B87AF8FB-0B9C-40EF-9DD5-F978F3C37CD6@microsoft.com...
> > Hey,
> >
> > I posted before about IsInRole and was told if you do Windows
> > Authentication
> > with Identity Impersonation, you can check against security groups.
> > However,
> > the LDAP is separated into Organizational Units. I did a test and am
> > assuming IsInRole() will not test for OU membership? Can anyone confirm
> > this?
> >
> > I guess the only way to check for OU membership is to traverse a
> > DirectoryEntry root w/ System.DirectoryServices.dll
> >
> > Can anyone help w/ this?
> >
> > Thanks
>
>
- Next message: Patrick.O.Ige: "Re: check if a user is a member of a particular group in active direct"
- Previous message: Patrick.O.Ige: "Re: ASP.NET 2.0 & FormsAuthentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
