#262 Win-sc:user_item\group entity values are not machine qualified in ovaldi

[Chris Coffin]

ovaldi currently returns SC user_item\group entity values without a machine qualifier while the documentation states that local groups should be qualified with the machine name. Note that only local groups are ever returned here (those listed in the Computer management UI). This issue does NOT affect the related SC group_item\user or group_item\subgroup values as they include qualifiers. ovaldi should include the machine qualifier in the SC user_item\group entity values.

Examples (current ovaldi behavior):

E1. Input:
<user_object>
<user>System1\Guest</user>
</user_object>

SC Output:
<user_item>
<user>System1\Guest</user></user_item>

    <group>Guests</group>
</user_item>

E2. Input:
<user_object>
<user>Admin</user>
</user_object>

SC Output:
<user_item>
<user>Admin</user></user_item>

    <group>Administrators</group>

    <group>None</group>

    <group>Users</group>

    <group>test</group>
</user_item>

[Michael Chisholm]

The code for getting the containing groups of a trustee is different from the code getting the trustees contained in a group. That's why the user_test and group_test behaved differently w.r.t. normalization of trustee names.

There are actually two bugs described here (in the user test):
1) trustees aren't properly formatted
2) domain groups are never returned

Both are fixed in r1785.

[Dragos P.]

Hi Michael,

Is the built r1785 available for download?

Thanks,
_Dragos.

[Michael Chisholm]

No, a new ovaldi build hasn't yet been officially released. Dan would have to comment on when that might happen.

[Danny Haynes]

Hi Dragos,

The latest build only goes up to r1732.

Thanks,

Danny

[Dragos P.]

Thank you Michael and Danny for the quick response.