本文介绍了活动目录用户组成员GroupPrincipal的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
我想使用 GroupPrincipal
(即 System.DirectoryServices.AccountManagement
命名空间的一部分)来填充列表string类型的,这样我就可以检查,如果用户是Active Directory组的成员。下面是我写到目前为止编辑类:
I am trying to use GroupPrincipal
(part of the System.DirectoryServices.AccountManagement
namespace) to populate a list of type string, so I can check to see if a user is a member of an Active Directory group. Here is the edited class that I have written so far:
public class ActiveDirectoryMembership
{
private PrincipalContext context = new PrincipalContext(ContextType.Domain, Environment.UserDomainName);
private List<string> GroupName {get;set;}
public ActiveDirectoryMembership()
{
//Code snipped - this part returns a list of users
populateGroups();
}
private void populateGroups()
{
GroupPrincipal SearchGroup = GroupPrincipal.FindByIdentity(context, "Group Name");
GroupName = new List<string>();
foreach (UserPrincipal p in GroupName.GetMembers())
{
GroupName.add(p.SamAccountName);
}
}
所以,我在哪里的问题呢?
So, where am I going wrong?
在此先感谢:)
推荐答案
你的code ++工程,此修改(我做了测试,以保证):
This modification of your code works (I made tests to ensure):
private static readonly string DomainName = "domaincontrollercomputer.domain.com";
private static readonly string DomainContainer = "DC=DOMAIN,DC=COM";
private static readonly string ADGroupName = "AD Group Name";
private List<string> GroupName {get;set;}
private void populateGroups()
{
using (var ctx = new PrincipalContext(ContextType.Domain, DomainName, DomainContainer))
{
using (var grp = GroupPrincipal.FindByIdentity(ctx, IdentityType.Name, ADGroupName))
{
GroupName = new List<string>();
foreach (var member in grp.GetMembers())
{
GroupName.Add(member.SamAccountName);
}
}
}
}
这篇关于活动目录用户组成员GroupPrincipal的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!