querying ldap to retrieve groups user is member of (in sharepoint) - sharepoint

I'm using Sharepoint in combination with Nintex. The possibility to query the ldap is available via Nintex, and basic querying actions work well! Now I am trying to get an array or collection of the groups the user is member of.. i've tried
(&(objectCategory=group)(member=cn={itemproperty:ldapName},dc=MyDomain))
Unfortunately this does not work, I'm not getting a response back from the logging nor can I find any other solution...
any tips or help on this issue would be greatly appreciated!
Erik

You will need to retrieve the "memberOf" attribute from your user to get a list of groups he's a direct member of.
I say direct because there are nested groups (User being member of Group A, which in turn is member of Group B) and those won't be returned.
Also, the primary group (usually "Users") is not being returned by the "memberOf" attribute either.
Marc
PS: If you can use .NET 3.5, there's a newer AD interface exposing users as strongly typed objects - see the excellent article by Joe Kaplan and Ethan Wilansky.
There, you can grab a user and then just call .GetAuthorizationGroups on the user object and you're done!

Related

When I create an Azure AD user, the calendars "allowedOnlineMeetingProviders" is empty, how do I update this?

I need a users calendar to have the property "allowedOnlineMeetingProviders" contain "teamsForBusiness". I am not able to add the calendar via the create user call (graph api) so I had to subsequently update the existing calendar but it wont let me update the property (only name seems to update). Anyone know how I can programmatically set this property?
Its because its not expected workflow ~ Microsofts response:
Hope you are doing good.
Apologies for the delayed response, I have tried to gather more details on this behavior internally, but unfortunately since this is an existing behavior in the system i.e. by design we can say since the new user needs to have some kind of interaction with the MS teams initially.
Unfortunately, we aren't much help on this scenario from MS graph api standpoint.
We request you to provide your feedback/ideas/suggestion https://techcommunity.microsoft.com/t5/microsoft-365-developer-platform/idb-p/Microsoft365DeveloperPlatform
We regret not being helpful to you on this case since this is a known issue.
Kindly let us know if you have any queries.

Getting a list of BuildFire plugin users from the Widget side

I am developing a plugin that allows the user the post content that I am storing in an object in publicData. To identify the user that posted the data, I am storing the _id that is returned from buildfire.auth.getCurrentUser() in that publicData object along with the content of the post.
Is there a way I can access a list of the users of my plugin, then iterate through that to find the user with the corresponding _id? A list of the users of my plugin must exist somewhere, I just do not know how to/if I can access it.
Any help on this would be greatly appreciated!
I would recommend caching the user object's nonsensitive data. Remember, you have a bit more access to the logged-in user over fetching another user profile using the user id. https://github.com/BuildFire/sdk/wiki/How-to-use-Auth#buildfireauth-getuserprofileoptionscallback
Since the user profile picture URL is really an API, you don't have to worry about the user changing it since it will always return the latest. The other property I recommend you cache is the Display name (not the first name and last name) since that rarely changes as well. This way your performance wont suffer and you can do a lazy fetch for a distinct list of user ids an update them as needed. KNowing most wont need an UI updates since nothing changed

Failing assign permissions to user SharePoint 2010

Very odd problem occurs when I try to assign permissions to a single user by using the name picker. I have two users that has similar names: Jason Hillmer and Jason Hill.
When permission is assigned to Jason Hillmer everything is working as expected, but when trying to assign any permission to Jason Hill it fails saying: "The user does not exist or is not unique.". I've checked into the database from which SharePoint 2010 sources the users and they are totally different, with different emails, last names, usernames and so on.
Actually I don't have any way to grant access to Jason Hill into SharePoint website.
Does anybody know how to solve this problem? Is there a way to trick the system? And I would like to know WHY this problem occurs when we have two totally different users, even if they have similar names...
Regards,
Martin
Generally when you receive the "does not exist or is not unique" message, you can click the underlined name to see available options and choose the correct user.
Another way to accomplish the same would be to type in the user's email address or login instead of their "friendly" display name, since those unique values should resolve to the correct account immediately.

Client Object Model access to Custom User Properties

I've setup up a custom user property via central admin and set the value on a couple of my users. That said when I query the User Information List using Query Builder I'm not seeing values for the field. I've even tried specifying the fields to return via ViewFields.
Anyone have any experience with this? Any other suggestions?
Thanks!
Casey
i've also searched a while, but the closed i came to was this... i ended up using the UserProfileService instead, like described in this article.

Data in custom attribute not returned in UserProfile object in MOSS

I've created two new custom attributes in the UserProfile. When the service we wrote returns data about a specific user by using the UserProfile object, sometimes the data isn't returned, even though if we look at the user in SSP it look populated. Some users work; this is the first user we set up with data. I'm not sure if sometime in the meantime after setting up the first user and testing, if there's something we ran and need to run again. How can I get all the users to get their data returned in a call to their UserProfile?
It may be a language issue, perhaps you can detect a pattern in working/not working users and their language?
Have you looked at the visibility of the custom attributes? Is it possible that it's a question of who is supposed to be able see the attribute that is causing your issue?
It could be connected to when the profile was created and when the attributes were added.
Is there any pattern to which users work and which do not?
Try creating a new user, and see if the attributes are available for that user.

Resources