Detect admin rights in C#

Question

0.00/5 (No votes)

See more:

I want to check whether logged in user have admin rights.
I am developing console application in ASP.NET 4.5.2, C#, Visual Studio 2015.

I log in as Domain user, having Admin rights.

What I have tried:

Tried several code samples available on google, but none seems to work. Below are couple of samples.

//Sample # 1

return WindowsIdentity.GetCurrent().Owner.IsWellKnown(WellknownSidType.BuiltinAdministratorsSid);

//Sample # 2
WindowsIdentity identity = WindowsIdentity.GetCurrent();
WindowsPrinciipal principal = new WindowsPrincipal(identity);
return princiapl.IsInRole(WindowsBuiltInRole.Administrator);

Above code returns true, only if Visual Studio 2015 is run as administrator else it will always return false.

I want application to return true, if logged in user have admin rights, despite of fact VS 2015 run as administrator or not..

Posted 28-Sep-16 21:01pm

sopy7

Updated 29-Sep-16 11:47am

Add a Solution

Comments

F-ES Sitecore 29-Sep-16 4:09am

Is it the client\user of the website who you want to check has admin rights?

phil.o 29-Sep-16 4:59am

A console application in ASP.NET? That sounds weird. Please describe your project more acutely.

[no name] 29-Sep-16 8:41am

You need to figure out what you are doing first or trying to do. "console application in ASP.NET 4.5.2, C#" tells us that you have no idea what it is that you are doing or trying to do.

3 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Maciej Los · Answer 1 · 2016-09-29T01:18:00

Solution 1

I'd suggest to read this: How To: Use Windows Authentication in ASP.NET 2.0[^] and this: Explained: Windows Authentication in ASP.NET 2.0[^]

Posted 29-Sep-16 1:18am

Maciej Los

Foothill · Answer 2 · 2016-09-29T11:47:00

This is the simplest solution that I can find.

C#

using System.DirectoryServices.AccountManagement; // in reference dll

public bool UserIsAdmin(string userSamAccountName, string adminSamAccountName)
{
 PrincipalContext context =  new PricipalContext(ContextType.Domain);
 GroupPrincipal adminGroup = new GroupPricipal(context, adminSamAccountName);
 UserPrincipal user = UserPrincipal.FindByIdentity(context, userSamAccountName);
 return user.IsMemberOf(adminGroup);
}

Edit: now be carefull, you don't want to leave the samAccount name of your domain admin group just lying about on the server if it is facing the internet.

Member 9361111 · Answer 3 · 2020-10-21T07:56:00

Solution 3

<DllImport("shell32.dll", SetLastError:=True)> _
Public Function IsUserAnAdmin() As <MarshalAs(UnmanagedType.Bool)> Boolean
End Function

Posted 21-Oct-20 7:56am

Member 9361111

Updated 21-Oct-20 8:07am

v2