How would I go about querying what active directory group the currently logged in user belongs to? I am assuming it will be through LDAP but I havnt been able to find much on how to get this particular information.
I have put together some code but im not quite sure what I need to do next
// Open the access token associated with the calling process.
if (OpenProcessToken(GetCurrentProcess(),
TOKEN_QUERY,
&hToken) == FALSE)
{
dwErrorCode = GetLastError();
wprintf(L"OpenProcessToken failed. GetLastError returned: %d\n", dwErrorCode);
return HRESULT_FROM_WIN32(dwErrorCode);
}
// Retrieve the token information in a TOKEN_USER structure.
GetTokenInformation(hToken,
TokenUser, // Request for a TOKEN_USER structure.
NULL,
0,
&dwBufferSize);
pTokenUser = (PTOKEN_USER) new BYTE[dwBufferSize];
memset(pTokenUser, 0, dwBufferSize);
if (GetTokenInformation(hToken,
TokenUser,
pTokenUser,
dwBufferSize,
&dwBufferSize))
{
CloseHandle(hToken);
}
else
{
dwErrorCode = GetLastError();
wprintf(L"GetTokenInformation failed. GetLastError returned: %d\n", dwErrorCode);
return HRESULT_FROM_WIN32(dwErrorCode);
}
if (IsValidSid(pTokenUser->User.Sid) == FALSE)
{
开发者_如何学Go wprintf(L"The owner SID is invalid.\n");
delete [] pTokenUser;
}
In your particular case I think you can do without any LDAP calls. Here's a suggestion:
- use
GetCurrentProcessIdandOpenProcessto get a handle to the current process - call
OpenProcessTokenon that handle to open the access token associated with the current process - call
GetTokenInformationon that access token, with a token information class ofTokenGroups - the resulting
TOKEN_GROUPSstructure contains a list with the SIDs and attributes of all the groups in the access token - call
LookupAccountSidon the SID of each group in the list to obtain its name
MSDN should provide more detailed information about the calls mentioned above.
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论