jpetter
asked on
Getting a User's Drive Mappings on a Remote Machine
I just finished writing an application that our LAN Managers use to back up certain data and features from a user's machine. It works quite well (many thanks to those here who helped me to recursively search for files), but one feature that the LMs have requested is to grab a users drive mappings and write them out to the log file I'm using.
My first thought was to see if I could use the WNet functions to access a remote machine, but I couldn't find any documentation that would lead me to pursue that approach. I'm already using the registry on the remote machine to provide me with printer information, so that was my next thought for drive mappings. I knew this could be tricky because in the past, I have written services that load a user's profile, but in this case I won't be executing on the remote machine, only accessing it. So, knowing that the drive info is stored within the HKEY_USERS hive I thought I could leverage that. All the subkeys under that are SID's, and I figured that SID would correspond to the SID I could grab from calling LookupAccountName. So, I made the call, converted the SID to a string, but the SID I receive from the conversion does not match any of the SID subkey names under HKEY_USERS.
Does anyone know an easier way to pull a particular users drive mappings, or barring that, what I'm doing wrong?
Below is my function to lookup the SID and convert it to a string. It is incomplete at this point because I wanted to do a proof of concept to be reasonably sure I was getting a SID string I could then pass to RegOpenKey.
Thanks,
Jeff
**************************
BOOL CFileBackupDlg::getMapping
{
const unsigned int MAX_NAME = 17;
char ch = '\0';
char szUser[MAX_PATH];
char szDomain[MAX_PATH];
char lpBuf[MAX_PATH];
LPTSTR strSid;
BYTE SidBuffer[1024];
PSID psid = (PSID)SidBuffer;
SID_NAME_USE sidUse;
DWORD cbSidBuff = 1024;
DWORD cbDomainName = sizeof (szDomain);
ch = strUser[0];
if ((ch == 'b') || (ch == 'B') || (ch == 'd') || (ch == 'D'))
lstrcpy (szDomain, "bell-atl-n");
if ((ch == 'v') || (ch == 'V') || (ch == 'z') || (ch == 'Z'))
lstrcpy (szDomain, "us1");
lstrcpy (szUser, szDomain);
lstrcat (szUser, "\\");
lstrcat (szUser, strUser);
if (!LookupAccountName (strComputer,
szUser,
psid,
&cbSidBuff,
szDomain,
&cbDomainName,
&sidUse))
{
wsprintf (lpBuf, "SID lookup failed for user: %s in domain: %s\n", strUser, szDomain);
MessageBox (lpBuf, "Error in LookupAccountName", MB_OK |MB_ICONSTOP);
return FALSE;
}
else
{
BOOL bRes = ConvertSidToStringSid (psid, &strSid);
MessageBox (strSid, "User SID", MB_OK);
return TRUE;
}
}
My first thought was to see if I could use the WNet functions to access a remote machine, but I couldn't find any documentation that would lead me to pursue that approach. I'm already using the registry on the remote machine to provide me with printer information, so that was my next thought for drive mappings. I knew this could be tricky because in the past, I have written services that load a user's profile, but in this case I won't be executing on the remote machine, only accessing it. So, knowing that the drive info is stored within the HKEY_USERS hive I thought I could leverage that. All the subkeys under that are SID's, and I figured that SID would correspond to the SID I could grab from calling LookupAccountName. So, I made the call, converted the SID to a string, but the SID I receive from the conversion does not match any of the SID subkey names under HKEY_USERS.
Does anyone know an easier way to pull a particular users drive mappings, or barring that, what I'm doing wrong?
Below is my function to lookup the SID and convert it to a string. It is incomplete at this point because I wanted to do a proof of concept to be reasonably sure I was getting a SID string I could then pass to RegOpenKey.
Thanks,
Jeff
**************************
BOOL CFileBackupDlg::getMapping
{
const unsigned int MAX_NAME = 17;
char ch = '\0';
char szUser[MAX_PATH];
char szDomain[MAX_PATH];
char lpBuf[MAX_PATH];
LPTSTR strSid;
BYTE SidBuffer[1024];
PSID psid = (PSID)SidBuffer;
SID_NAME_USE sidUse;
DWORD cbSidBuff = 1024;
DWORD cbDomainName = sizeof (szDomain);
ch = strUser[0];
if ((ch == 'b') || (ch == 'B') || (ch == 'd') || (ch == 'D'))
lstrcpy (szDomain, "bell-atl-n");
if ((ch == 'v') || (ch == 'V') || (ch == 'z') || (ch == 'Z'))
lstrcpy (szDomain, "us1");
lstrcpy (szUser, szDomain);
lstrcat (szUser, "\\");
lstrcat (szUser, strUser);
if (!LookupAccountName (strComputer,
szUser,
psid,
&cbSidBuff,
szDomain,
&cbDomainName,
&sidUse))
{
wsprintf (lpBuf, "SID lookup failed for user: %s in domain: %s\n", strUser, szDomain);
MessageBox (lpBuf, "Error in LookupAccountName", MB_OK |MB_ICONSTOP);
return FALSE;
}
else
{
BOOL bRes = ConvertSidToStringSid (psid, &strSid);
MessageBox (strSid, "User SID", MB_OK);
return TRUE;
}
}
ASKER
Ah, I thought that HKEY_CURRENT_USER was loaded when a user logged on, and HKEY_USERS stored the hives of other users, but those not logged on.
Man, so does this mean I have to go the LogonUser route and work with that token? I hope not since I would probably need to do it as a service then to ensure I had the necessary credentials.
Thanks,
Jeff
Man, so does this mean I have to go the LogonUser route and work with that token? I hope not since I would probably need to do it as a service then to ensure I had the necessary credentials.
Thanks,
Jeff
>>Man, so does this mean I have to go the LogonUser route and work with that token?
How would you do that remotely? The easiest way to collect that information is to grab it via a logon script and sent it to the collecting program.
How would you do that remotely? The easiest way to collect that information is to grab it via a logon script and sent it to the collecting program.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
JKR,
You're right! Duh, I wasn't thinking. Of course LogonUser would not work as it would not be executing on the remote PC. We don't use logon scripts; all the drives are mapped persistently on the user's machine.
Wayside,
Thanks, I may end up checking that out. I've played around a little with WMI using C++ and to me it doesn't flow that well. It worked well with C# and VB, but it seems like the documentation and support for C++ and WMI is lagging far behind.
Thanks,
Jeff
You're right! Duh, I wasn't thinking. Of course LogonUser would not work as it would not be executing on the remote PC. We don't use logon scripts; all the drives are mapped persistently on the user's machine.
Wayside,
Thanks, I may end up checking that out. I've played around a little with WMI using C++ and to me it doesn't flow that well. It worked well with C# and VB, but it seems like the documentation and support for C++ and WMI is lagging far behind.
Thanks,
Jeff
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Rendaduiyan,
Thanks for the help. However, according to the documentation in the Platform SDK, there is no user info structure that will return the drive mappings, nor does the function return all system users and their data. It only returns information for those users that were created with a call to NetUserAdd. But I appreciate the help.
JKR,
Good point about the WMI issue. If I was going to be dependant upon the user being logged on, then I could use the registry with relative ease compared to WMI (but then I don't really know WMI).
Since there doesn't seem to be a solution to this, I'll split up the points. If anyone has any ideas though, I would be eager to hear them.
Thanks,
Jeff
Thanks for the help. However, according to the documentation in the Platform SDK, there is no user info structure that will return the drive mappings, nor does the function return all system users and their data. It only returns information for those users that were created with a call to NetUserAdd. But I appreciate the help.
JKR,
Good point about the WMI issue. If I was going to be dependant upon the user being logged on, then I could use the registry with relative ease compared to WMI (but then I don't really know WMI).
Since there doesn't seem to be a solution to this, I'll split up the points. If anyone has any ideas though, I would be eager to hear them.
Thanks,
Jeff
The subkeys under HKEY_USERS are only loaded when a user is logged on to that machine, this is the problem.