1. 首頁
  2. 問答
  3. Ldap:從C#中的父組中檢索子組

Ldap:從C#中的父組中檢索子組

2015-05-06 43 views
0

我在Active Directory帳戶中擁有安全組。安全組擁有用戶和子組。我能夠從安全組中獲取用戶。這裏是從安全組獲取用戶的代碼,並且我傳遞了「groupname」作爲參數。它將返回屬於組的相應用戶。Ldap:從C#中的父組中檢索子組

DataTable dt = new DataTable(groupName); 
     var _with1 = dt.Columns; 
     _with1.Add("AccountID", typeof(string)); 
     _with1.Add("FirstName", typeof(string)); 
     _with1.Add("LastName", typeof(string)); 
     _with1.Add("DisplayName", typeof(string)); 
     _with1.Add("Email", typeof(string)); 
     _with1.Add("AccountDisabled", typeof(bool)); 
using (DirectoryEntry rootEntry = new DirectoryEntry(LDAPPath, LDAPUser, LDAPPassword)) 
     { 
      using (DirectorySearcher searcher = new DirectorySearcher(rootEntry)) 
      { 
      searcher.Filter = string.Format("(&(ObjectClass=Group)(CN={0}))", groupName); 
      SearchResult result = searcher.FindOne(); 
      object members = result.GetDirectoryEntry().Invoke("Members", null); 
      //<<< Get members 

      //<<< loop through members 
      foreach (object member in (IEnumerable)members) 
      { 
       DirectoryEntry currentMember = new DirectoryEntry(member); 
       //<<< Get directoryentry for user 
       if (currentMember.SchemaClassName.ToLower() == "user") 
       { 
        System.DirectoryServices.PropertyCollection props1 = currentMember.Properties; 
        dt.Rows.Add(props1["sAMAccountName"].Value, props1["givenName"].Value, props1["sn"].Value, props1["displayName"].Value, props1["mail"].Value, Convert.ToBoolean(currentMember.InvokeGet("AccountDisabled"))); 
       } 

      }

}}

但是我沒有辦法得到,在家長的安全組中添加子組。如何從父組中檢索組?

來源

2015-05-06 user2361134

回答

0

此代碼工作正常,我..

DataTable dt = new DataTable(groupName); 
     var _with1 = dt.Columns; 
     _with1.Add("AccountID", typeof(string)); 
     _with1.Add("FirstName", typeof(string)); 
     _with1.Add("LastName", typeof(string)); 
     _with1.Add("DisplayName", typeof(string)); 
     _with1.Add("Email", typeof(string)); 
     _with1.Add("AccountDisabled", typeof(bool)); 
     _with1.Add("Groups", typeof(string)); 

     using (DirectoryEntry rootEntry = new DirectoryEntry(LDAPPath, LDAPUser, LDAPPassword)) 
     { 
      using (DirectorySearcher searcher = new DirectorySearcher(rootEntry)) 
      { 
      searcher.Filter = string.Format("(&(ObjectClass=Group)(CN={0}))", groupName); 
      SearchResult result = searcher.FindOne(); 
      object members = result.GetDirectoryEntry().Invoke("Members", null); 
      //<<< Get members 

      //<<< loop through members 
      foreach (object member in (IEnumerable)members) 
      { 
       DirectoryEntry currentMember = new DirectoryEntry(member); 
       //<<< Get directoryentry for user 
       if (currentMember.SchemaClassName.ToLower() == "user") 
       { 
        System.DirectoryServices.PropertyCollection props1 = currentMember.Properties; 
        dt.Rows.Add(props1["sAMAccountName"].Value, props1["givenName"].Value, props1["sn"].Value, props1["displayName"].Value, props1["mail"].Value, Convert.ToBoolean(currentMember.InvokeGet("AccountDisabled")),""); 
       } 
       else if (currentMember.SchemaClassName.ToLower() == "group") 
       { 
        System.DirectoryServices.PropertyCollection props1 = currentMember.Properties; 
        //foreach (var group in result.Properties["member"]) 
        //{ 
         dt.Rows.Add("","","","","",false,props1["name"].Value); 
        //} 
       } 
      } 
    }

來源

2015-05-18 10:22:34 user2361134

相關問題

 相關問題