How to extract computer/machine SID?
https://stackoverflow.com/questions/7641792
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianQuestion
I'm looking for a way to extract the computer SID using Delphi code. There's a tool called PsGetSid from SysInternals that does this, but I can't use it in my application. I searched for a code example in Google and couldn't find one.
How can I achieve this in Delphi?
Please help.
Solution
This is a sample using the LookupAccountName WinAPi function as @MikeKwan suggest.
{$APPTYPE CONSOLE}
uses
Windows,
SysUtils;
function ConvertSidToStringSid(Sid: PSID; out StringSid: PChar): BOOL; stdcall; external 'ADVAPI32.DLL' name {$IFDEF UNICODE} 'ConvertSidToStringSidW'{$ELSE} 'ConvertSidToStringSidA'{$ENDIF};
function SIDToString(ASID: PSID): string;
var
StringSid : PChar;
begin
if not ConvertSidToStringSid(ASID, StringSid) then
RaiseLastWin32Error;
Result := string(StringSid);
end;
function GetLocalComputerName: string;
var
nSize: DWORD;
begin
nSize := MAX_COMPUTERNAME_LENGTH + 1;
SetLength(Result, nSize);
if not GetComputerName(PChar(Result), {var}nSize) then
begin
Result := '';
Exit;
end;
SetLength(Result, nSize);
end;
function GetComputerSID:string;
var
Sid: PSID;
cbSid: DWORD;
cbReferencedDomainName : DWORD;
ReferencedDomainName: string;
peUse: SID_NAME_USE;
Success: BOOL;
lpSystemName : string;
lpAccountName: string;
begin
Sid:=nil;
try
lpSystemName:='';
lpAccountName:=GetLocalComputerName;
cbSid := 0;
cbReferencedDomainName := 0;
// First call to LookupAccountName to get the buffer sizes.
Success := LookupAccountName(PChar(lpSystemName), PChar(lpAccountName), nil, cbSid, nil, cbReferencedDomainName, peUse);
if (not Success) and (GetLastError = ERROR_INSUFFICIENT_BUFFER) then
begin
SetLength(ReferencedDomainName, cbReferencedDomainName);
Sid := AllocMem(cbSid);
// Second call to LookupAccountName to get the SID.
Success := LookupAccountName(PChar(lpSystemName), PChar(lpAccountName), Sid, cbSid, PChar(ReferencedDomainName), cbReferencedDomainName, peUse);
if not Success then
begin
FreeMem(Sid);
Sid := nil;
RaiseLastOSError;
end
else
Result := SIDToString(Sid);
end
else
RaiseLastOSError;
finally
if Assigned(Sid) then
FreeMem(Sid);
end;
end;
begin
try
Writeln(GetComputerSID);
except
on E:Exception do
Writeln(E.Classname, ':', E.Message);
end;
Writeln('Press Enter to exit');
Readln;
end.
OTHER TIPS
You can use the Win32_Account WMI class, extracting the machine SID from an user account SID.
for example for a user account where the SID is
S-1-5-21-1299824301-1797996836-594316699-1009
The Machine SID will be
S-1-5-21-1299824301-1797996836-594316699
Check this sample
program GetWMI_Info;
{$APPTYPE CONSOLE}
uses
SysUtils,
ActiveX,
ComObj,
Variants;
function GetComputerSID:string;
const
WbemUser ='';
WbemPassword ='';
WbemComputer ='localhost';
wbemFlagForwardOnly = $00000020;
var
FSWbemLocator : OLEVariant;
FWMIService : OLEVariant;
FWbemObjectSet: OLEVariant;
FWbemObject : OLEVariant;
oEnum : IEnumvariant;
iValue : LongWord;
begin;
FSWbemLocator := CreateOleObject('WbemScripting.SWbemLocator');
FWMIService := FSWbemLocator.ConnectServer(WbemComputer, 'root\CIMV2', WbemUser, WbemPassword);
FWbemObjectSet:= FWMIService.ExecQuery('SELECT SID FROM Win32_Account Where SIDType=1','WQL',wbemFlagForwardOnly);
oEnum := IUnknown(FWbemObjectSet._NewEnum) as IEnumVariant;
if oEnum.Next(1, FWbemObject, iValue) = 0 then
begin
Result:=FWbemObject.SID;
Result:=Copy(Result,1,LastDelimiter('-',Result)-1);
FWbemObject:=Unassigned;
end;
end;
begin
try
CoInitialize(nil);
try
Writeln(GetComputerSID);
finally
CoUninitialize;
end;
except
on E:EOleException do
Writeln(Format('EOleException %s %x', [E.Message,E.ErrorCode]));
on E:Exception do
Writeln(E.Classname, ':', E.Message);
end;
Writeln('Press Enter to exit');
Readln;
end.
You can get it with LookupAccountName. Pass in NULL for the first parameter and the machine name for the second.
Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
