TestimoX

API Reference

Class

InternalSidCatalog

Edit on GitHub
Namespace ADPlayground.Acl
Assembly ADPlayground
Source ADPlayground/ACL/InternalSidCatalog.cs:28
Modifiers sealed

Catalog of SID prefixes that represent internal, trusted, builtin, and service identities.

Inheritance

  • Object
  • InternalSidCatalog

Constructors

public InternalSidCatalog(IEnumerable<SecurityIdentifier> internalDomains, IEnumerable<SecurityIdentifier> trustedDomains, IEnumerable<SecurityIdentifier> builtinPrefixes, IEnumerable<SecurityIdentifier> wellKnownPrefixes, IEnumerable<SecurityIdentifier> servicePrefixes, SecurityIdentifier localMachineSid, IEnumerable<String> deadDomainPrefixes = null) #
ADPlayground/ACL/InternalSidCatalog.cs:28

Initializes a new instance of the InternalSidCatalog class.

Parameters

internalDomains System.Collections.Generic.IEnumerable{System.Security.Principal.SecurityIdentifier} requiredposition: 0
Domain SID prefixes belonging to the current forest (S-1-5-21-...).
trustedDomains System.Collections.Generic.IEnumerable{System.Security.Principal.SecurityIdentifier} requiredposition: 1
Domain SID prefixes from trusted forests/external domains.
builtinPrefixes System.Collections.Generic.IEnumerable{System.Security.Principal.SecurityIdentifier} requiredposition: 2
BUILTIN authority prefixes (e.g., S-1-5-32).
wellKnownPrefixes System.Collections.Generic.IEnumerable{System.Security.Principal.SecurityIdentifier} requiredposition: 3
Other well-known SID prefixes (Everyone, Authenticated Users, etc.).
servicePrefixes System.Collections.Generic.IEnumerable{System.Security.Principal.SecurityIdentifier} requiredposition: 4
Service/capability SID prefixes (S-1-5-80, S-1-15-2, etc.).
localMachineSid System.Security.Principal.SecurityIdentifier requiredposition: 5
Local machine SID (for local accounts).
deadDomainPrefixes System.Collections.Generic.IEnumerable{System.String} = null optionalposition: 6
Known defunct domain SID prefixes.

Methods

public Boolean IsBuiltinOrWellKnown(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:80
Returns: Boolean

Determines whether the SID is builtin or well-known.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0
public Boolean IsDeadDomain(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:90
Returns: Boolean

Determines whether the SID belongs to a known defunct domain prefix.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0
public Boolean IsInternal(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:69
Returns: Boolean

Determines whether the SID matches an internal domain prefix.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0
public Boolean IsLocalMachine(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:64
Returns: Boolean

Determines whether the SID belongs to the local machine account domain.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0
public Boolean IsServiceOrCapability(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:85
Returns: Boolean

Determines whether the SID is a service or capability SID.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0
public Boolean IsTrusted(SecurityIdentifier sid) #
ADPlayground/ACL/InternalSidCatalog.cs:74
Returns: Boolean

Determines whether the SID matches a trusted domain prefix.

Parameters

sid System.Security.Principal.SecurityIdentifier requiredposition: 0

Properties

public static InternalSidCatalog Empty { get; } #
ADPlayground/ACL/InternalSidCatalog.cs:51

Gets an empty catalog that classifies nothing as internal or trusted.