Reputation: 97
Owner and Co-owner of Groups
I want to write an c# application which will fetch the Active Directiry group names of which the currently logged in user is owner/co-owner.
In our environment, we add the owner in managed by tab of the group and co-owner is added to security tab of the group and is given write security permissions.
I can the fetch the groups of which the user is owner through the managed objects user attribute in AD, but there is no provision to fetch the co-owner.
Please let me know if there is any attribute through which i can get the group names of which the user is co-owner
Upvotes: 0
Views: 1053
Answers (1)
Reputation: 4503
There is not a way to query AD based on the ACL. You'd need to scan through every group and inspect the ACLs. If you have Exchange, it has an attribute for managing multiple owners (msExchCoManagedBy or similar), or, you could extend your AD schema with a similar multiple owners attribute to search on.
Upvotes: 1
Related Questions
- Active Directory User Group Memberships GroupPrincipal
- How to know if DirectoryEntry is a user or a group?
- Active Directory nested groups
- Finding the Owner of An Active Directory Group
- Getting User Permissions From Active Directory In SharePoint Groups
- ActiveDirectory - Secondary Owner
- User Group and Role Management in .NET with Active Directory
- Active Directory Group Members Issue
- Ownership of group in Active Directory,
- User/Group Permissions in Active Directory