Andy
2006-03-23 23:28:02 UTC
I am unable to remove Domain Users group from user membership unless change
User Primary Group first.
SecurityIdentifier DomainUsersSid = new
SecurityIdentifier(WellKnownSidType.AccountDomainUsersSid, DOMAIN_SID);
DirectoryEntry DomainUsersGroup = new
DirectoryEntry(String.Format(@"LDAP://<SID={0}>", DomainUsersSid.Value));
object grouptoken = DomainUsersGroup.Invoke("GetInfoEx", new object[] {
"primaryGroupToken" }, 0);
or
grouptoken = DomainUsersGroup.Properties["primaryGroupToken"]
Always returns NULL even for Domain Users group
User Primary Group first.
SecurityIdentifier DomainUsersSid = new
SecurityIdentifier(WellKnownSidType.AccountDomainUsersSid, DOMAIN_SID);
DirectoryEntry DomainUsersGroup = new
DirectoryEntry(String.Format(@"LDAP://<SID={0}>", DomainUsersSid.Value));
object grouptoken = DomainUsersGroup.Invoke("GetInfoEx", new object[] {
"primaryGroupToken" }, 0);
or
grouptoken = DomainUsersGroup.Properties["primaryGroupToken"]
Always returns NULL even for Domain Users group