[cifs-protocol] [EXTERNAL] Re: [MS-ADTS] SID as DN alternative for querying groups by member - TrackingID#2209290040008412
Jeff McCashland (He/him)
jeffm at microsoft.com
Thu Oct 6 20:05:18 UTC 2022
Thank you for the fast response!
Best regards,
Jeff McCashland (He/him) | Senior Escalation Engineer | Microsoft Protocol Open Specifications Team
-----Original Message-----
From: Christof Schmitt <cs at samba.org>
Sent: Thursday, October 6, 2022 12:20 PM
To: Jeff McCashland (He/him) <jeffm at microsoft.com>
Cc: Andrew Bartlett <abartlet at samba.org>; cifs-protocol at lists.samba.org; Microsoft Support <supportmail at microsoft.com>
Subject: Re: [EXTERNAL] Re: [cifs-protocol] [MS-ADTS] SID as DN alternative for querying groups by member - TrackingID#2209290040008412
On Thu, Oct 06, 2022 at 05:48:34PM +0000, Jeff McCashland (He/him) wrote:
> Hi Christof,
>
> I have a quick question for you. Do you get the same results when you use the hexadecimal representation of the SID, instead of the string representation?
Hi Jeff,
I see the same results also when using the hexadecimal SID:
# net ads search -P -p 3268 'member=<SID=S-1-5-21-686935948-1127628631-3386349506-1104>' cn Got 0 replies
# net ads search -P -p 3268 'member=<SID=\01\05\00\00\00\00\00\05\15\00\00\00\8C\CF\F1\28\57\3F\36\43\C2\97\D7\C9\50\04\00\00>' cn Got 0 replies
I tried querying an existing user using the same syntax, so i assume that this query is correct.
Regards,
Christof
More information about the cifs-protocol
mailing list