NTLM/JCIFS : How to obtain all the SIDs for an user using JCIFS

After authenticating an user via NTLM, how can I obtain the SID from the User, not the SID from the Domain?

Note the code snippet. I can obtain the Domain SID from the NtlmPasswordAuthentication object but I cannot get the current user domain SID which is what I would like to get to fetch all the group SIDs related to it.

I have also tried to obtain other SIDs on the code but this does not work too.

Anyway yo use JNDI to do that?
try {
    UniAddress myDomain = getPrimaryDomain(ip);
    NTLMAuth = new NtlmPasswordAuthentication(domainName,userName,password);
    SmbSession.logon(myDomain, NTLMAuth);
    // after loging in, here's how to get the SID for the Domain
    jcifs.smb.SID mySid = jcifs.smb.SID.getServerSid(hostName, NTLMAuth);
  // this returns something like 
  // Sid Domain SID: S-1-5-21-796745780-2711697408-451074171
  // trying to resolve SIDs this way DOES NOT work
  SID[] sids = new SID[10];
    sids[0] = mySid; // assigns domain SID???
    
    jcifs.smb.SID.resolveSids(hostName, NTLMAuth, sids);
    
    for (int i = 0; i < sids.length; i++ ) {
	    System.out.println("Sids["+i+"] Type: " +sids[i].getType());
    }
 
    // Second attempt, fails as well
 
    String sidDomainId = ""+mySid.getDomainSid();
 
    SID domsid = new SID(sidDomainId);
    int rid = 1120;
    int count = 150;
    
    SID[] sids = new SID[count];
    for (int i = 0; i < sids.length; i++) { 
	    sids[i] = new SID(domsid, rid++);
    }
    SID.resolveSids("ts0", null, sids);
    for (int i = 0; i < sids.length; i++) {
	    System.out.println("My SIDs "+sids[i].toString());
    }
 
  
  } catch (SmbException smbe) {
	  System.out.println("Failed to Authenticate: "+smbe.getMessage()+" NTStatus: "+smbe.getNtStatus());
  } catch (Exception e) {
	  System.out.println("Failed to Authenticate: "+e.getMessage());
  }

Open in new window

LVL 1
CarlosScheideckerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

CarlosScheideckerAuthor Commented:
I've used LDAP for this. Not ideal but was a temporary fix. Also talked to one of the JCIFS developer and he told me that this feature is not complete.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
File Sharing Software

From novice to tech pro — start learning today.