Ask a Question related to ASP.NET Security, Design and Development.
-
Tomas Martinez #1
Users login: Nested groups.
Hi there!
If anyone could help me... thanks! My problem is this: our application
controls the users login with Active Directory. It checks that the user is
in
the groups we allow, but if one of these groups has a nested group in it,
the
user isn't checked in this last group (or others, if there were more nested
groups). How could we check users in nested groups?
Thanks a lot.
Tomas Martinez Guest
-
Selecting users that are in multiple groups
I am very new to ColdFusion and am having a light issue trying to select users that are in multiple groups... Basically, I want the sales people... -
PrincipalPermission Attribute and Nested Groups
The Issue: Group A contains Group B Group B contains User 1. I want to check if User 1 is in Group A. This: -
[Carbon] how do i get a list of users and groups??
hey all, i've been struggling to figure out how to get a list of users and groups like the finder's get info window displays in its ownership &... -
adding users to different groups
Hi group, I need to add a user (myself) to a group he doesn't belong to by default. On most unices I do edit the group file and voila. On the... -
local users and groups
When I try to access the Local Users and Groups, as the local administrator, there's an X, and I get an error message stating, Unable to access the... -
Joe Kaplan \(MVP - ADSI\) #2 Re: Users login: Nested groups.
If you use Windows authentication in IIS and ASP.NET, then the
WindowsPrincipal created by the runtime will do this for you. Otherwise,
you need to calculate them correctly somehow. If your AD domain is 2003
native mode and your server is a domain member, then you can use Kerberos
S4U to do this easily by creating a WindowsIdentity object using the user's
userPrincipalName attribute and using the resulting WindowsIdentity to
create a WindowsPrincipal.
If you absolutely have to use LDAP to get the user's group membership, I'd
suggest you use the tokenGroups attribute.
[url]http://groups.google.com/groups?hl=en&lr=&selm=eGzmt3W9DHA.2404%40TK2MSFTNG P12.phx.gbl[/url]
Joe K.
"Tomas Martinez" <TomasMartinez@discussions.microsoft.com> wrote in message
news:B3085492-2013-4747-B652-C1A92A7AC84D@microsoft.com...> Hi there!
>
> If anyone could help me... thanks! My problem is this: our application
> controls the users login with Active Directory. It checks that the user is
> in
> the groups we allow, but if one of these groups has a nested group in it,
> the
> user isn't checked in this last group (or others, if there were more
> nested
> groups). How could we check users in nested groups?
>
>
> Thanks a lot.
Joe Kaplan \(MVP - ADSI\) Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
