Ermittelt Remote, ob der User Admin, PowerUser oder User -Re

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53

/// <summary>
        /// Ermittelt Remote, ob der User Admin, PowerUser oder User -Rechte hat
        /// </summary>
        /// <param name="ComputerName"></param>
        /// <param name="UserName"></param>
        /// <returns>local GroupName</returns>
        public static string GetLocalUserRights(string ComputerName, string UserName)
        {
            Dictionary<string, string> LocalRights = new Dictionary<string,string>();
            ManagementObjectSearcher mos = new ManagementObjectSearcher("SELECT * FROM Win32_Group WHERE LocalAccount = TRUE");
            ManagementScope ms = new ManagementScope("\\\\" + ComputerName + "\\root\\cimv2");
            mos.Scope = ms;
            try
            {
                mos.Scope.Connect();
            }
            catch (Exception)
            {
                return null;
            }
            SecurityIdentifier sidLocalAdmins = new SecurityIdentifier(WellKnownSidType.BuiltinAdministratorsSid, null);
            SecurityIdentifier sidLocalPowerUser = new SecurityIdentifier(WellKnownSidType.BuiltinPowerUsersSid, null);
            SecurityIdentifier sidLocalUser = new SecurityIdentifier(WellKnownSidType.BuiltinUsersSid, null);

            foreach (ManagementObject mo in mos.Get())
            {
                if (mo["SID"].ToString() == sidLocalAdmins.Value | mo["SID"].ToString() == sidLocalPowerUser.Value | mo["SID"].ToString() == sidLocalUser.Value)
                {
                    ManagementObjectSearcher userSearcher = new ManagementObjectSearcher("SELECT * FROM Win32_GroupUser Where GroupComponent = \"Win32_Group.Domain=\'" + ComputerName + "\',Name=\'" + mo["Name"] + "\'\"");
                    userSearcher.Scope = ms;
                    try
                    {
                        userSearcher.Scope.Connect();
                        foreach (ManagementObject userObject in userSearcher.Get())
                        {
                            string UName = userObject["PartComponent"].ToString();
                            UName = UName.Substring(UName.IndexOf("=") + 1);
                            UName = UName.Substring(UName.IndexOf("=") + 1).Replace("\"", "");
                            if (UName.IndexOf(UserName, 0, StringComparison.OrdinalIgnoreCase) == 0)
                                LocalRights.Add(mo["SID"].ToString(), mo["Name"].ToString());
                        }
                    }
                    catch (Exception)
                    {
                    }
                }
            }
            if (LocalRights.ContainsKey(sidLocalAdmins.Value)) return LocalRights[sidLocalAdmins.Value];
            if (LocalRights.ContainsKey(sidLocalPowerUser.Value)) return LocalRights[sidLocalPowerUser.Value];
            if (LocalRights.ContainsKey(sidLocalUser.Value)) return LocalRights[sidLocalUser.Value];
            string UserAccount = sidLocalUser.Translate(typeof(NTAccount)).Value;
            return UserAccount.Substring(UserAccount.IndexOf("\\") + 1);
        }