Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to query Active Directory given multiple user names?

Tags:

c#

active-directory

directoryservices

I use System.DirectoryServices.AccountManagement to query Active Directory for a single user info

public UserInfo FindOne(string samUserName)
{
    using (var ctx = new PrincipalContext(ContextType.Domain, "domain.com", "Bob", "pwd"))
    {
        using (UserPrincipal user = UserPrincipal.FindByIdentity(ctx, samUserName))
        {
            if (user != null)
            {
                // get info about Alice into userInfo
                return userInfo;
            }
        }   
    }

    return null;
}

So if I use var aliceInfo = search.FindOne("alice"); I get info from the directory. Now I need to search a directory (1000+ users) given several user logon names, for example 

var userInfos = search.FindMany(/* list of names: alice, jay, harry*/);

How to implement the following method?

public List<UserInfo> FindMany(List<string> samUserNames)
{
    ...
}
like image 255
oleksii Avatar asked Jan 18 '26 00:01

oleksii

1 Answers

Try this:

string query = "dc=com,dc=domainController,ou=Users"; //this is just an example query, change it to suit your needs

// create your domain context and define the OU container to search in
PrincipalContext ctx = new PrincipalContext(ContextType.Domain, "yourDomain", query);

// define a "query-by-example" principal - here, we search for a UserPrincipal (user)
UserPrincipal qbeUser = new UserPrincipal(ctx);

// create your principal searcher passing in the QBE principal    
PrincipalSearcher srch = new PrincipalSearcher(qbeUser);

return srch.FindAll().Select(p => p as UserPrincipal);

This way you can return all users from AD, and then filter out those you don't need. UserPrincipal has a few user related attributes, like Surname and Sid, but if you need to get a value that UserPrincipal doesn't have, you can create an extension method and access any LDAP attribute:

    public static String GetProperty(this Principal principal, String property)
    {
        DirectoryEntry directoryEntry = principal.GetUnderlyingObject() as DirectoryEntry;
        if (directoryEntry.Properties.Contains(property))
            return directoryEntry.Properties[property].Value.ToString() ?? "";
        else
            return String.Empty;
    }

Here is a list of LDAP attributes: https://fsuid.fsu.edu/admin/lib/WinADLDAPAttributes.html

like image 143
Fayilt Avatar answered Jan 19 '26 15:01

Fayilt
Sign in to Comment

Related questions

In c#, how to combine strings and their frequency to a resulting string?
How do I remove a value from Session?
In WPF setting e.Effects in DragOver doesn't work - why?
Process interaction(c# and pure c++)
Shape connectors in Visio
Parallel For Not Working With EF4.1 and Automapper
CodeDom compiler: Type or namespace 'Foo' does not exist in the namespace 'System'
How to configure WebMethods to use DataContractJsonSerializer
Write to hDC with GDI+ in C#
how to remove language dependency in VS 2010?
Adding a custom hashAlgorithmType in C# ASP.NET
How to add a Splash Screen
Connection pooling/limit for SQL Server and Linq-to-SQL
Printing a PDF File silently from .NET application [closed]
Rhino Mocks Stub Method not working
.NET GUID - Does it loop around or generate through some algorithm? [duplicate]
?? operator in system.DBNull
Is there a way to do an automated build of an open-source project on Google Code? [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!