Re: How do I check for domain group membership?
From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 09/29/05
- Next message: Dominick Baier [DevelopMentor]: "Re: Installing CA-certificate in certificate-store from .NET"
- Previous message: Helge Jensen: "Installing CA-certificate in certificate-store from .NET"
- Next in thread: carion1: "Re: How do I check for domain group membership?"
- Maybe reply: carion1: "Re: How do I check for domain group membership?"
- Maybe reply: Dominick Baier [DevelopMentor]: "Re: How do I check for domain group membership?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 Sep 2005 12:23:25 -0700
Hello Byron,
you have to use the fully qualified group name - which is DOMAIN\GroupName
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
> I have a WinForm app that will run on XP boxes in a Win2003 AD domain
> named "GTI.int". I have several Universal security groups named
> "ILF_x", one of which is "ILF_Installer" and I have made myself a
> member of that group for development. There are arrays of security
> group names associated with menu items along with other things that
> should be enabled or disabled based on security group membership,
> though my example code only uses the one group "ILF_Installer" for
> testing. I need a method that will iterate the array of acceptable
> security group names and return true if the current user is a member
> of at least one group, or false otherwise.
>
> I have tried the below listed code without success to test for my
> membership in the "ILF_Installer" group.
>
> As always, any help would be greatly appreciated.
>
> --------------------- SNIP
> --------------------------------------------------------------
> AppDomain myDomain = Thread.GetDomain();
> myDomain.SetPrincipalPolicy(PrincipalPolicy.WindowsPrincipal);
> WindowsPrincipal prin = (WindowsPrincipal)Thread.CurrentPrincipal;
>
> Console.WriteLine("Principle:" + prin.Identity.Name);
>
> // The preceding line correctly displays GTI\MyUserName
>
> if ( prin.IsInRole("ILF_Installer") )
> Console.WriteLine("ILF_Installer");
> // The preceding block does NOT display "ILF_Installer" as desired.
> -------------------------------- SNIP
> ------------------------------------------
>
- Next message: Dominick Baier [DevelopMentor]: "Re: Installing CA-certificate in certificate-store from .NET"
- Previous message: Helge Jensen: "Installing CA-certificate in certificate-store from .NET"
- Next in thread: carion1: "Re: How do I check for domain group membership?"
- Maybe reply: carion1: "Re: How do I check for domain group membership?"
- Maybe reply: Dominick Baier [DevelopMentor]: "Re: How do I check for domain group membership?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
