如何获取用户所属组的字符串集合？

发布于 2024-10-29 18:32:26 字数 970 浏览 1 评论 0原文

if (DomainHelpers.DomainExists(ConnectionString))
{
    using(var baseDirectory = new DirectoryEntry(ConnectionString))
    {
        baseDirectory.Username = Username;
        baseDirectory.Password = Password;

        using (DirectorySearcher searcher = new DirectorySearcher())
        {
            searcher.SearchRoot = baseDirectory;
            searcher.Filter = "(objectCategory=user)";
            searcher.SearchScope = SearchScope.Subtree;

            var userResults = searcher.FindAll();

            foreach (SearchResult user in userResults)
            {
                var newUser = new User();
                newUser.Name = user.Properties["name"][0].ToString();
                newUser.Path = user.Path;

                //.Groups is just a List<string>.
                newUser.Groups = user.Properties?????

                _users.Add(newUser);
            }
        }
    }
}

如何检索用户所属组的集合？

谢谢你！ :)

原文

if (DomainHelpers.DomainExists(ConnectionString))
{
    using(var baseDirectory = new DirectoryEntry(ConnectionString))
    {
        baseDirectory.Username = Username;
        baseDirectory.Password = Password;

        using (DirectorySearcher searcher = new DirectorySearcher())
        {
            searcher.SearchRoot = baseDirectory;
            searcher.Filter = "(objectCategory=user)";
            searcher.SearchScope = SearchScope.Subtree;

            var userResults = searcher.FindAll();

            foreach (SearchResult user in userResults)
            {
                var newUser = new User();
                newUser.Name = user.Properties["name"][0].ToString();
                newUser.Path = user.Path;

                //.Groups is just a List<string>.
                newUser.Groups = user.Properties?????

                _users.Add(newUser);
            }
        }
    }
}

How do I retrieve a collection of groups the user belongs to?

Thank you! :)

分享到QQ

分享到微博

如果你对这篇内容有疑问，欢迎到本站社区发帖提问参与讨论，获取更多帮助，或者扫码二维码加入 Web 技术交流群。

发布评论

需要登录才能够评论，你可以免费注册一个本站的账号。

挥剑断情 2024-11-05 18:32:26

user.Properties["memberOf"]

不要忘记在 ...searcher.FindAll() 之前添加 searcher.PropertiesToLoad.Add("memberOf");

来填充您的属性：

//.Groups is just a List<string>.
foreach(object group in user.Properties["memberOf"])
    newUser.Groups.Add((string)group);

user.Properties["memberOf"]

don't forget to add searcher.PropertiesToLoad.Add("memberOf"); before ...searcher.FindAll()

To populate your property:

//.Groups is just a List<string>.
foreach(object group in user.Properties["memberOf"])
    newUser.Groups.Add((string)group);

回复收藏 0 原文

寄与心 2024-11-05 18:32:26

您应该使用 System.DirectoryServices.AccountManagement。这容易多了。这是一个很好的代码项目文章，为您提供了有关此中所有类的概述DLL。

使用DirectoryEntry 确实很难做到正确。首先，获取 memberOf 属性并不能为您提供主要组。此外，如果用户拥有来自另一个域的域本地组，则它不会显示在 memberOf 属性中。您可以在此处查看详细信息。如果您切换到使用 System.DirectoryServices.AccountManagement，代码如下所示。以下代码可以找到该用户分配到的直接组，其中包括主要组。

UserPrincipal user = UserPrincipal.FindByIdentity(new PrincipalContext (ContextType.Domain, "mydomain.com"), IdentityType.SamAccountName, "username");
foreach (GroupPrincipal group in user.GetGroups())
{
    Console.Out.WriteLine(group);
}

You should use System.DirectoryServices.AccountManagement. It's much easier. Here is a nice code project article giving you an overview on all the classes in this DLL.

It's really hard to get it right using DirectoryEntry. First of all, getting memberOf attribute doesn't give you primary group. Also, if the user has a domain local group from another domain, it won't show up in memberOf attribute. You can check here for details. Here is how the code looks like if you switch to use System.DirectoryServices.AccountManagement. The following code can find the immediate groups this user assigned to, which includes the primary group.

UserPrincipal user = UserPrincipal.FindByIdentity(new PrincipalContext (ContextType.Domain, "mydomain.com"), IdentityType.SamAccountName, "username");
foreach (GroupPrincipal group in user.GetGroups())
{
    Console.Out.WriteLine(group);
}

回复收藏 0 原文

~没有更多了~