I am currently working on a project where I need to query Active Directory to determine group membership of a user. I initially was locating the user and retrieving the memberOf attribute. The problem with this is that there is a domain and a child domain. The groups are universal groups so they can be used in both domains and they don't show up in the memberOf attribute. Unfortunately there doesn't seem to be much info around for Active Directory access with C++. Is there anyway to determine group membership in this case in C++?
Determining Cross Domain Active Directory Group Membership
1.5k Views Asked by thecaptain0220 At
1
There are 1 best solutions below
Related Questions in C++
- C++ using std::vector across boundaries
- Linked list without struct
- Connecting Signal QML to C++ (Qt5)
- how to get the reference of struct soap inherited in C++ Proxy/Service class
- Why we can't assign value to pointer
- Conversion of objects in c++
- shared_ptr: "is not a type" error
- C++ template using pointer and non pointer arguments in a QVector
- C++ SFML 2.2 vectors
- Lifetime of temporary objects
- I want to be able to use 4 different variables in a select statement in c ++
- segmentation fault: 11, extracting data in vector
- How to catch delay-import dll errors (missing dll or symbol) in MinGW(-w64)?
- How can I print all the values in this linked list inside a hash table?
- Configured TTL for A record(s) backing CNAME records
Related Questions in ACTIVE-DIRECTORY
- PowerShell Script to add newuser
- Active directory and linux nslcd binding without extending the AD schema
- Retrieve user information from Active Directory on login
- Feeding Variables in new-aduser -path option in powershell
- Log in through active directory
- Swapping attributes in AD
- How to get LastLogon from ALL Domain Controllers
- Getting LastLogon and LastLogonTimeStamp from ALL Domain Controllers into 1 output CSV
- Spring LDAP Context.REFERRAL to follow
- Avoiding Active Directory Uniqueness Constraint Violation During Rename
- samba retrieving users with arbitrary attributes
- WinApi and work with several domains
- Tomcat LDAP User Auth
- how to add multiple Owner in ADLDS groups
- Zend Framework Active Directory authentication
Related Questions in GROUP-MEMBERSHIP
- What are the caveats of using 'isMemberOf' virtual attribute to determine a user's group membership?
- Powershell 2.0 - Remove Group Membership for List of Disabled Accounts
- REST API - Changing group membership
- How to create Group Membership in TFS?
- LDAP query for checking group membership using C#
- Export members of multiple groups
- CheckTokenMembership in VB6
- Azure AD including groupMemberClaims in app manifest fails
- powershell - Remove all "ForeignSecurityPrincipals" from AD Groups selected by SID
- Microsoft Graph - getting a specific user and his AD group memberships using the Graph SDK code base
- Powershell: Export group members from external domain
- -Like, -Match in subarray
- MS Graph SDK: How to add URL segment to filter for specific member type?
- How to add a security group as a member of another security group in Azure AD B2C tenant?
- Add users from another domain to AD group
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
If you are using managed C++, you can use UserPrincipal.GetAuthorizationGroups.
If you are not using managed C++, to solve this particular problem, you should bind to Global Catalog and do a LDAP search on the member attribute of the group object to find out which Universal Group containing the user. You should limit your search by specifing the groupType, objectCategory and objectClass.
However, like I mentioned in another post , group enumeration in general is very hard to do it right. If you just need to find out all the groups a user belongs to, your best bet is to use S4USelf