Post by Charlie Roottrouble is the WMI query expression needs to go into a framework product
which then executes it on a remote client. The framework intermediate
lanaguage only allows the use of Win32 classes. If I was given the
choice I would've used ADSI and never posted here!!! :D
Hmm, maybe this "framework" needs re-designed?
It's worth looking at the "Active Directory Provider" for WMI. I've
never really understood what it's for, but it seems way over the top for
what you're asking. I think it's for people who actually want to monitor
and interact with the directory itself, not for simple look-ups.
There's also something called the "ADSI Extension" for WMI, but note
that this has been discontinued on Win2003 onwards.
I'm not entirely sure what you mean by "Win32 class", that could mean
almost any class from nearly any programming language compiled for
Win32. If you mean your framework only works with classes from WMI
beginning with "Win32" then that's crazy! What if you want to work with
CIM_DataFile??
Post by Charlie RootSo that's back to square one - any ideas if there's a way how to get
this information using WMI. It would also work if I was able to parse
from some other place (registry or config file) but afaik there isn't
place like this anywhere on the machine.
Bear in mind the whole point of Active Directory is that it's a SERVER
based look up. You are doing a lookup and asking "what security groups
does this computer belong to?" If this kind of info was in the registry
it would seem wrong to me (although we all know about ADSI caching on
the local machine but that's another story).
I can understand why you'd want to do this with users, but I don't know
why you'd want to do it with computers unless it's a complex setup with
special security groups for sets of computers. On my own network we do
most of this with Organizational Units (OUs) and as far as I know all
our computers are in the default security group, although I've never
needed to know.
--
Gerry Hickman (London UK)