Getting Group Membership

R

Raterus

Hi,

I'm trying to do something that I think should be pretty easy, take the user who is authenticated with the application (intranet application/ integrated windows authentication), and determine if they are in "this group".

Before, I had queried active directory, got the list of groups for the user and compared, but then I realized that the IsInRole Function may actually work in this case. I tried it and it doesn't seem to be working correctly. Here is what I've tried so far.

I'm impersonating in my application, so I tried this....didn't work
Dim blah As WindowsPrincipal = New WindowsPrincipal(System.Security.Principal.WindowsIdentity.GetCurrent())
If blah.IsInRole("Domain Admins") = True Then
'is a domain admin
End If

Then I tried this:
If HttpContext.Current.User.IsInRole("Domain Admins") = True Then
'is a domain admin
End If

Still didn't return true (I am a member of this group too!) Am I missing something here, or so I just go back to querying active directory myself for group membership?

Thanks for any help!
--Michael
 
H

Hernan de Lahitte

Try to add the domain before the group name (i.e. "domain\\Domain Admins" )

--
Hernan de Lahitte
Lagash Systems S.A.
http://weblogs.asp.net/hernandl


This posting is provided "AS IS" with no warranties, and confers no rights.

Hi,

I'm trying to do something that I think should be pretty easy, take the user
who is authenticated with the application (intranet application/ integrated
windows authentication), and determine if they are in "this group".

Before, I had queried active directory, got the list of groups for the user
and compared, but then I realized that the IsInRole Function may actually
work in this case. I tried it and it doesn't seem to be working correctly.
Here is what I've tried so far.

I'm impersonating in my application, so I tried this....didn't work
Dim blah As WindowsPrincipal = New
WindowsPrincipal(System.Security.Principal.WindowsIdentity.GetCurrent())
If blah.IsInRole("Domain Admins") = True Then
'is a domain admin
End If

Then I tried this:
If HttpContext.Current.User.IsInRole("Domain Admins") = True Then
'is a domain admin
End If

Still didn't return true (I am a member of this group too!) Am I missing
something here, or so I just go back to querying active directory myself for
group membership?

Thanks for any help!
--Michael
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Getting Group Membership 0
Hid\show group box in asp.net 2
Membership 1
AD Group Memberships (MyADMembershipProvider) Question 1
RoleProvider for AD Group membership 7
role/group authorization not recognizing user groups. 4
AD Membership PwdQuestion and PwdAnswer 0
Membership & Roles ApplicationName 0

Members online

Total: 37 (members: 2, guests: 35)
Robots: 141

Forum statistics

Threads
473,773
Messages
2,569,594
Members
45,117
Latest member
Matilda564

Latest Threads

Top