Sign in to follow this  
Followers 0
supersonic

ADFunctions.au3 + _ADHasFullRights()

3 posts in this topic

Hi!

I'm trying to check whether a specific user has full (AD [user] object) rights or not.

Therefore I use ADFunctions.au3 (latest version, 2009-07-01, see "Downloads"):

#include ".\..\AUTOIT\Include\ADFunctions\ADFunctions.au3"

MsgBox(0, _ADHasFullRights(_ADSamAccountNameToFQDN("Administrator"), @UserName), 0)

_ADHasFullRights() always returns 0.

Anyone any idea?

Greets,

-supersonic.

Share this post


Link to post
Share on other sites



After browsing though the adfunctions UDF I think you'll need to set $loggedonusergroups

; NOTES : Please use the following command to store the local user's groups for the function 'HasFullRights'. This is to allow cross-domain

; permission checks. $loggedonusergroups is a global variable declared in the 'Define AD Constants' region. If you are using this command

; in this library, move the command below the declaration of the variable and remove the comment charcater.

; _ADRecursiveGetMemberOf ($loggedonusergroups, _ADSamAccountNameToFQDN (@UserName))

So could you please insert

_ADRecursiveGetMemberOf ($loggedonusergroups, _ADSamAccountNameToFQDN (@UserName))

before calling _ADHasFullRights?


My UDFs and Tutorials:

Spoiler

UDFs:
Active Directory (NEW 2017-04-18 - Version 1.4.8.0) - Download - General Help & Support - Example Scripts - Wiki
OutlookEX (NEW 2017-02-27 - Version 1.3.1.0) - Download - General Help & Support - Example Scripts - Wiki
ExcelChart (2015-04-01 - Version 0.4.0.0) - Download - General Help & Support - Example Scripts
Excel - Example Scripts - Wiki
Word - Wiki
PowerPoint (2015-06-06 - Version 0.0.5.0) - Download - General Help & Support

Tutorials:
ADO - Wiki

 

Share this post


Link to post
Share on other sites

I read that too. I inserted it here:

Global $loggedonusergroups ; populate this with the logged on user groups in your own app

#EndRegion

$oMyError = ObjEvent("AutoIt.Error", "_ADDoError") ; Install a custom error handler

_ADRecursiveGetMemberOf ($loggedonusergroups, _ADSamAccountNameToFQDN (@UserName))

;  MyErrFunc
Func _ADDoError()

But no luck.

After browsing though the adfunctions UDF I think you'll need to set $loggedonusergroups

So could you please insert

_ADRecursiveGetMemberOf ($loggedonusergroups, _ADSamAccountNameToFQDN (@UserName))

before calling _ADHasFullRights?

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0