发表新帖
发表新帖

How can I convert from a SID to an account name in C#

后端 未结
关注
10 1015
囚心锁ツ
囚心锁ツ 2020-12-01 02:56

I have a C# application that scans a directory and gathers some information. I would like to display the account name for each file. I can do this on the local system by g

相关标签:
10条回答
  • 野性不改
    2020-12-01 03:05

    This one is a stumper. You are in an Active Directory environment right? Just checking:)

    Anyhow, instead of binding with sid.Value,

    string str = "LDAP://<SID=" + sid.Value + ">";

    I would try converting the SID's byte array to an Octet String and bind with that instead.

    There is a sweet example here on page 78. This will get you closer. To be honest, I've not tried binding with a SID before. But I've had success binding with a user's GUID though :)

    Good luck and let me know how it goes.

    0 讨论(0)
  • 盖世英雄少女心
    2020-12-01 03:06

    See here for a good answer:

    The best way to resolve display username by SID?

    The gist of it is this bit:

    string sid="S-1-5-21-789336058-507921405-854245398-9938";
string account = new System.Security.Principal.SecurityIdentifier(sid).Translate(typeof(System.Security.Principal.NTAccount)).ToString();

    This approach works for me for non-local SID's over the active directory.

    0 讨论(0)
  • 猫巷女王i
    2020-12-01 03:06

    I am quite sure you will be able to use the accepted answer from here: Determine the LocalSystem account name using C#

    Basically, you can translate an instance of the SecurityIdentifier class to type NTAccount, from which you can get the user name. In code:

    using System.Security.Principal;

SecurityIdentifier sid = new SecurityIdentifier("S-1-5-18");
NTAccount acct = (NTAccount)sid.Translate(typeof(NTAccount));
Console.WriteLine(acct.Value);
    0 讨论(0)
  • 旧巷少年郎
    2020-12-01 03:12

    In C#, get the user SID and assign it to a string variable through:

    string strUser = System.Security.Principal.WindowsIdentity.GetCurrent().User.ToString();

    You will need to use string because the ability to resolve to the UserName supports string. In other words, using var varUser will result in a namespace error.

    string strUserName = new System.Security.Principal.SecurityIdentifier(strUser).Translate(typeof(System.Security.Principal.NTAccount)).ToString();
    0 讨论(0)
  • 太阳男子
    2020-12-01 03:19

    Ooh, then it's possible that the LDAP call is not working because you might not be in an Active Directory environment. If this is the case, then each of your machines is responsible for its own identity store. And your first code sample is not working across the network because the machine on which you are executing your code does not know how to resolve the SID that only makes sense on the remote machine.

    You really should check if your machines are a part of an Active Directory. You would know this during the logon process. Or you can check by right clicking on "My Computer", select "Properties", the "Computer Name" tab, then see if your computer is part of a domain.

    0 讨论(0)
  • 鱼传尺愫
    2020-12-01 03:22

    The SecurityReference object's Translate method does work on non-local SIDs but only for domain accounts. For accounts local to another machine or in a non-domain setup you would need to PInvoke the function LookupAccountSid specifying the specific machine name on which the look up needs to be performed.

    0 讨论(0)
 看不清?
提交回复
热议问题