Ask a Question related to ASP.NET Security, Design and Development.
-
Paul Wolpe #1
How to determine if a user (integrated authentication) is part of a domain security group.
I am trying to determine from an ASP.NET 1.1 page if a user is a member
of a Global Security group (Windows 2000). When I check
Page.User.IsInRole(@"DOMAINFOO\GroupBar") I always get false.
Inspecting the User object right after IsInRole has been called (in the
VS.NET 2003 debugger) I see that the m_roles string[] contains some
domain groups (like "Domain Users" and "Domain Admins." m_rolesTable is
undefined since I only have 11 items in my _roles array. None of the
security groups that I have defined (vs built in security groups)
appear in the m_roles array.
Is IsInRole the correct method to be using to check this sort of group
membership?
I have seen a lot of discussion on this topic but there doesn't seem to
be a consensus on how to solve this issue.
Any thoughts are greatly apreciated.
-Paul
Paul Wolpe Guest
-
is flash player an integrated part of windows ?
hi everyone. do anyone know if the flash player is an integrated part of windows (xp ie...) or do every user have to install the flash player... -
Determine Global Group vs User in Local?
This code enumerates all local group members (Win2K web server member server in a Win2K domain). But if a member is a global group, I need to... -
Integrated Authentication Issue
I have a web application using asp.net that uses integrated windows authentication. One of our users changed their windows login information. ... -
Integrated Authentication with Novell?
Does anybody know if there is a way to do integrated authentication using Novell. bill -
WEB FORM --> DOMAIN USER AUTHENTICATION
Microsoft Knowledge Base Article - 306158 http://support.microsoft.com/default.aspx?scid=kb;en- us;306158] shows a method to impersonate a specific... -
Joe Kaplan \(MVP - ADSI\) #2 Re: How to determine if a user (integrated authentication) is part of a domain security group.
It should work to use IsInRole to get all your domain groups for a
WindowsPrincipal. Some things that might help:
- A reboot might be necessary to update your groups in your token
- Sometimes you need to use impersonation for the groups to get built
correctly (although that doesn't sound like the problem here)
Otherwise, I'm not sure what the problem is. Some kind of a trust issue is
possible, but that doesn't sound like it either.
Joe K.
"Paul Wolpe" <pwolpe@gmail.com> wrote in message
news:cia1vb$9g@odah37.prod.google.com...>I am trying to determine from an ASP.NET 1.1 page if a user is a member
> of a Global Security group (Windows 2000). When I check
> Page.User.IsInRole(@"DOMAINFOO\GroupBar") I always get false.
>
> Inspecting the User object right after IsInRole has been called (in the
> VS.NET 2003 debugger) I see that the m_roles string[] contains some
> domain groups (like "Domain Users" and "Domain Admins." m_rolesTable is
> undefined since I only have 11 items in my _roles array. None of the
> security groups that I have defined (vs built in security groups)
> appear in the m_roles array.
>
> Is IsInRole the correct method to be using to check this sort of group
> membership?
>
> I have seen a lot of discussion on this topic but there doesn't seem to
> be a consensus on how to solve this issue.
> Any thoughts are greatly apreciated.
>
> -Paul
>
Joe Kaplan \(MVP - ADSI\) Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
