Convert SID string format to bytes array

c# .net sid
dev picture dev · Jul 9, 2014 · Viewed 8.3k times · Source

I want to convert SID string format to bytes array representation which in turn will be supplied to LookupAccountSid() method's second argument in C#. But I don't find any particular in built function which can do this. For example:

SID = S-1-5-32-544

can be converted into:

(SID: 1,2,0,0,0,0,0,5,32,0,0,0,32,2,0,0)

I saw it in some posts. but how? Is there a easy way to achieve this? Basically I want the byte array representation of the NT Authority\NetworkService which is SID = S-1-5-20. Thanks in advance for your help.

Answer

Konrad Kokosa picture Konrad Kokosa · Jul 9, 2014

You should use SecurityIdentifier object from System.Security.Principal namespace:

var sid = new SecurityIdentifier("S-1-5-32-544");
byte[] bytes = new byte[sid.BinaryLength];
sid.GetBinaryForm(bytes, 0);

and if you want it as a text, you can then:

string strsid = string.Format("(SID: {0})", string.Join(",", bytes ));

which produces exactly:

(SID: 1,2,0,0,0,0,0,5,32,0,0,0,32,2,0,0)

Moreover, if you want SID of NT Authority\NetworkService, you can replace first line with:

var sid = new SecurityIdentifier(WellKnownSidType.NetworkServiceSid, null);

Related questions

How to get the logon SID in C#

How does one retrieve the Windows Logon SID in C# .net? (not the user SID, but the unique new one for each session)

Read More
Get User SID From Logon ID (Windows XP and Up)

I have a Windows service that needs to access registry hives under HKEY_USERS when users log on, either locally or via Terminal Server. I'm using a WMI query on win32_logonsession to receive events when users log on, and …

Read More
Convert SID to Username in C#

In .net, I can create a NTAccount using domain and username, and get it's SID. But I cannot convert the SID back to NTAccount using translate function. new SecurityIdentifier(stringSid).Translate(typeof(NTAccount)).ToString(); And this two way conversion code …

Read More