Re: NetUserGetGroups inside passfilt.dll

From: Joe Richards [MVP] (humorexpress_at_hotmail.com)
Date: 05/31/05

  • Next message: Sudheer N: "Re: How to write Events into the security log" 
    Date: Mon, 30 May 2005 23:35:28 -0400

    For LDAP API info

    http://msdn.microsoft.com/library/default.asp?url=/library/en-us/ldap/ldap/ldap_bind.asp

    A good book is by Gil Kirkpatrick called Active Directory Programming. It has
    very limited availability now though.

    Overall you should avoid using the NET* API for AD for any reason, it is legacy.
    The new interfaces are the LDAP API and the ADSI COM LDAP and GC Providers as
    well as the .NET DirectoryServices stuff. For programming system level items,
    you should stick with Win32 level stuff which would be LDAP API for working with
    Active Directory.

    http://support.microsoft.com/default.aspx?scid=kb;en-us;841927

       joe 

    --
Joe Richards Microsoft MVP Windows Server Directory Services
www.joeware.net
Robert N Myhre wrote:
> Can you point me to some documentation or sample code?
> 
> "Joe Richards [MVP]" wrote:
> 
> 
>>The NET* API calls lock up when you are in the middle PasswordFilter, use LDAP 
>>calls instead.
>>
>>    joe
>>
>>--
>>Joe Richards Microsoft MVP Windows Server Directory Services
>>www.joeware.net
>>
>>
>>Robert N Myhre wrote:
>>
>>>Hello,
>>>
>>>  I am working on a customized passfilt.dll and I want to be able to check 
>>>the user groups of the passed in AccountName.  I implemented the function to 
>>>call NetUserGetGroups successfully within a console app, but when I move the 
>>>code inside the passfilt.dll, a call to change the password locks up.
>>>
>>>  I am beginning to think it is a security context issue.  What do I need to 
>>>do to get the NetUserGetGroups call to work within the passfilt.dll?
>>>
>>>Thanks
>>
  • Next message: Sudheer N: "Re: How to write Events into the security log"