pljoel/get_domain_sid.py

## get_domain_sid.py
import subprocess

def get_domain_sid(domain_name: str) -> str:
    # Reference: https://docs.microsoft.com/en-us/dotnet/api/system.security.principal.securityidentifier

    domain_component = [f"dc={dc}" for dc in domain_name.split(sep='.')] if domain_name else []
    domain_component = ",".join(domain_component)
    domain_dn = f"LDAP://{domain_component}"
    domain_sid_binary = f"([ADSI]\"{domain_dn}\").objectSid.Value"
    cmd_domain_sid = f"[System.Security.Principal.SecurityIdentifier]::new({domain_sid_binary}, 0).Value"

    # Execute powershell command to retrieve the domain sid
    process_domain_sid = subprocess.run(["powershell", "-Command", cmd_domain_sid], capture_output=True, text=True)
    if process_domain_sid.returncode != 0 or not process_domain_sid.stdout:
        raise RuntimeError(f"Unable to get the Domain SID for {domain_name}")

    domain_sid = process_domain_sid.stdout.strip()
    print(f"Domain SID for {domain_name}: {domain_sid}")
    return domain_sid
	import subprocess

	def get_domain_sid(domain_name: str) -> str:
	# Reference: https://docs.microsoft.com/en-us/dotnet/api/system.security.principal.securityidentifier

	domain_component = [f"dc={dc}" for dc in domain_name.split(sep='.')] if domain_name else []
	domain_component = ",".join(domain_component)
	domain_dn = f"LDAP://{domain_component}"
	domain_sid_binary = f"([ADSI]\"{domain_dn}\").objectSid.Value"
	cmd_domain_sid = f"[System.Security.Principal.SecurityIdentifier]::new({domain_sid_binary}, 0).Value"

	# Execute powershell command to retrieve the domain sid
	process_domain_sid = subprocess.run(["powershell", "-Command", cmd_domain_sid], capture_output=True, text=True)
	if process_domain_sid.returncode != 0 or not process_domain_sid.stdout:
	raise RuntimeError(f"Unable to get the Domain SID for {domain_name}")

	domain_sid = process_domain_sid.stdout.strip()
	print(f"Domain SID for {domain_name}: {domain_sid}")
	return domain_sid