是否可以使用 DirectoryServices 库创建活动目录用户?
我正在尝试创建一个库来帮助我操作 Windows Server 的 Active Directory 中的信息。
到目前为止,我已成功从 Active Directory 列表中获取了用户集合。
namespace SharpDirectory
{
public class UserSearcher
{
private List<User> _users;
public string ConnectionString { get; set; }
public string Username { get; set; }
public string Password { get; set; }
/// <summary>
/// Provides a method of accessing user information from Active Directory.
/// </summary>
/// <param name="connectionString">A standard LDAP conncetion string to your active directory server.</param>
/// <param name="username">User that has sufficient permission level to query Active Directory.</param>
/// <param name="password">Password for the entered user.</param>
public UserSearcher(string connectionString, string username, string password)
{
ConnectionString = connectionString;
Username = username;
Password = password;
}
/// <summary>
/// Find all users in an Active Directory.
/// </summary>
/// <returns>A List of User objects.</returns>
public List<User> FindAllUsers()
{
_users = new List<User>();
if (DomainExists(ConnectionString))
{
var baseDirectory = new DirectoryEntry(ConnectionString);
baseDirectory.Username = Username;
baseDirectory.Password = Password;
DirectorySearcher searcher = new DirectorySearcher();
searcher.SearchRoot = baseDirectory;
searcher.Filter = "(objectCategory=user)";
searcher.SearchScope = SearchScope.Subtree;
var userResults = searcher.FindAll();
foreach (SearchResult user in userResults)
{
var newUser = new User();
newUser.Name = user.Properties["name"][0].ToString();
newUser.Path = user.Path;
_users.Add(newUser);
}
}
return _users;
}
private bool DomainExists(string _connectionString)
{
try
{
if (DirectoryEntry.Exists(_connectionString))
return true;
else
return false;
}
catch (Exception e)
{
throw new Exception(e.Message);
}
}
}
}
我想知道,有没有办法使用这个库创建用户?
I'm trying to create a library that helps me manipulate information from Windows Server's Active Directory.
So far, I've managed to obtain a collection of users from an Active Directory listing.
namespace SharpDirectory
{
public class UserSearcher
{
private List<User> _users;
public string ConnectionString { get; set; }
public string Username { get; set; }
public string Password { get; set; }
/// <summary>
/// Provides a method of accessing user information from Active Directory.
/// </summary>
/// <param name="connectionString">A standard LDAP conncetion string to your active directory server.</param>
/// <param name="username">User that has sufficient permission level to query Active Directory.</param>
/// <param name="password">Password for the entered user.</param>
public UserSearcher(string connectionString, string username, string password)
{
ConnectionString = connectionString;
Username = username;
Password = password;
}
/// <summary>
/// Find all users in an Active Directory.
/// </summary>
/// <returns>A List of User objects.</returns>
public List<User> FindAllUsers()
{
_users = new List<User>();
if (DomainExists(ConnectionString))
{
var baseDirectory = new DirectoryEntry(ConnectionString);
baseDirectory.Username = Username;
baseDirectory.Password = Password;
DirectorySearcher searcher = new DirectorySearcher();
searcher.SearchRoot = baseDirectory;
searcher.Filter = "(objectCategory=user)";
searcher.SearchScope = SearchScope.Subtree;
var userResults = searcher.FindAll();
foreach (SearchResult user in userResults)
{
var newUser = new User();
newUser.Name = user.Properties["name"][0].ToString();
newUser.Path = user.Path;
_users.Add(newUser);
}
}
return _users;
}
private bool DomainExists(string _connectionString)
{
try
{
if (DirectoryEntry.Exists(_connectionString))
return true;
else
return false;
}
catch (Exception e)
{
throw new Exception(e.Message);
}
}
}
}
I was wondering, is there a way to create users using this library?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
如果您使用的是 .NET 3.5 及更高版本,则应查看 System.DirectoryServices.AccountManagement (S.DS.AM) 命名空间。在这里阅读所有相关内容:
管理 .NET Framework 3.5 中的目录安全主体
S.DS.AM命名空间为您提供了良好的强类型类来与用户 (UserPrincipal) 和组 (GroupPrincipal) 一起使用。您可以轻松地使用这些对象并检查和设置它们的属性 - 非常漂亮和干净,不再用DirectoryEntry及其混乱的.Properties和类似的东西。基本上,您可以定义域上下文,然后可以轻松地在 AD 中搜索和查找用户和/或组以及创建新实体:
新的 S.DS.AM 使得在 AD 中使用用户和组变得非常容易广告:
If you're on .NET 3.5 and up, you should check out the
System.DirectoryServices.AccountManagement(S.DS.AM) namespace. Read all about it here:Managing Directory Security Principals in the .NET Framework 3.5
The
S.DS.AMnamespace gives you nice, strongly-typed classes to work with users (UserPrincipal) and groups (GroupPrincipal). You can easily work with those objects and inspect and set their properties - very nice and clean, no more mucking around withDirectoryEntryand its messy.Propertiesand stuff like that.Basically, you can define a domain context and then you can easily search for and find users and/or groups in AD as well as create new entities:
The new S.DS.AM makes it really easy to play around with users and groups in AD:
尝试
Try