How can I get the domain name for a user logged into a Mac via Active Directory | ansaurus

tags:

views:

171

answers:

1

+3 Q:

How can I get the domain name for a user logged into a Mac via Active Directory

In my Cocoa app how can I get the current user's domain when they're logged in via Active Directory?

I need to determine two things:

If the current user is logged on to an Active Directory domain (only need to handle Active Directory).
If 1, the domain of the user.

I've found references to Directory Services and the Open Directory Programming Guide but the latter is 10.6 only (I must support 10.5+) and I could not find any examples for the former that gave me an idea of what I needed to do.

+1 A:

dsconfigad -show

It will tell whether you are bound to a directory and details about that directory if bound. Then you will know how to script dscl.

Sable 2010-06-10 16:06:45

Thanks. That's a great start, it definitely gets me the name of the domain the computer is bound to. If you use sudo you do not need to specify local credentials (important for using dsadminad programatically). Now is there a way to tell whether the currently logged in user is a domain user or a local account? Poking around so far I haven't been able to figure out a way. If there's a way to do that I will happily accept your answer.

Lawrence Johnston 2010-06-10 16:42:12

After poking around more, this question http://stackoverflow.com/questions/1139499/find-active-directory-users-home-folder-from-login-hook-script-in-os-x led me to try fingering the different users, and it appears on my test machine at least that AD users do not have a `Name` (they have a `Login`, but no full name). I'd like a more robust mechanism but if further testing and research shows this to be a fairly reliable method it may suffice.

Lawrence Johnston 2010-06-10 16:53:10

I discovered at least one case where a user logged in via Active Directory had a full user name, so that will not work. Still looking.

Lawrence Johnston 2010-06-10 17:07:07

related questions

Querying Active Directory with "SQL"?

Can I get more than 1000 records from a DirectorySearcher in Asp.Net?

How to get AD User Groups for user in Asp.Net?

Attempting to update a user's "connect to:" home directory path in AD using C#

Monitoring group membership in Active Directory more efficiently (C# .NET)

How do I speed up data retrieval from .NET AD within ColdFusion

How do you authenticate against an Active Directory server using Spring Security?

Managing large user databases for single-signon.

Move Active Directory Group to Another OU using Powershell

How to move SharePoint sites from one active directory domain to another?

When did I last talk to my Domain Server?

Using ActiveDirectoryMembershipProvider with two domain controllers

I am having trouble getting phpBB to authenticate with our Active Directory

How do I use ADAM to run unit tests?

COMException "Library not registered." while using System.DirectoryServices

Caching Active Directory Data

Windows / Active Directory - User / Groups

Get a list of available domains (NT4 and Active Directory)

How do I use NTLM authentication with Active Directory

I/O permission settings using .net installer

quoting System.DirectoryServices.ResultPropertyCollection

How do you impersonate an Active Directory user in Powershell?

Setting Group Type for new Active Directory Entry in VB.NET

Is there a way for MS Access to grab the current Active Directory user?

Checklist for IIS 6/ASP.NET Windows Authentication?