active-directory-group

问题 I need to check whether current user is a member of an active directory group. I started with getting the current user as below. Now I want to know how to check this CurrentUser is in active directory group "CustomGroup" string CurrentUser = WindowsIdentity.GetCurrent().Name; 回答1: You can use the .NET 3.5 System.DirectoryServices.AccountManagement classes. See the MSDN article Managing Directory Security Principals in the .NET Framework 3.5 for details. You can use something like: string

问题 I'm trying to get ALL the groups a user is member, even the nested ones (recusively), in Powershell I'm using: (Get-ADUser <username> -Properties MemberOf | Select-Object MemberOf).MemberOf But it only returns the groups the user is a "direct" member, like you get when using the AD users console. I single list of ALL the groups is very helpful, like the output from "gpresult -r", where it shows ALL the groups the user is a member. Is there a way to get it from any AD user? (Doesnt need to be

问题 I am trying to add member to azure active directory group but it fails it showing me following error. context is already tracking the entity I tried to found lot for it, I also see this links Azure Active Directory Graph Client 2.0 - Context is not currently tracking the entity http://blogs.msdn.com/b/aadgraphteam/archive/2014/12/12/announcing-azure-ad-graph-api-client-library-2-0.aspx But I not get any success please help me. This is my code : try { ActiveDirectoryClient client =

问题 Hi I use the Active Directory and C# in a ASP.NET Application and I want that I get a bool if a User is in a Group or in this SubGroups. I have write a method that get me whether th user is in the group but not in this Subgroups :( How I can make a recursiv search in my method: here my code: public static bool IsUserInGroup(string dc, string User, string group) { PrincipalContext ctx = new PrincipalContext(ContextType.Domain, dc); GroupPrincipal p = GroupPrincipal.FindByIdentity(ctx, group);

问题 I am trying to create a method that accepts a list of Active Directory security groups and returns a boolean response for whether or not the user is a member (either direct or indirect). I am using Adaxes (which basically extends ADSI with some of their own functionality). They have an object (IAdmGroup) that returns an array of byte[] for all members (direct and indirect) for a group. I want to avoid using that method if I can because some of the groups have very large groups under them (10

问题 While fetching users from group, giving exception message as "While trying to resolve a cross-store reference, the SID of the target principal could not be resolved. The error code is 1332." PrincipalContext ctx = null; if (!string.IsNullOrWhiteSpace(adUserName)) { ctx = new PrincipalContext(ContextType.Domain, domainName, adUserName, adPassword); } else { ctx = new PrincipalContext(ContextType.Domain, domainName); } var groupNames = commaSeparatedGroupNames.Split(','); IEnumerable<Principal>

问题 I'm using java ldap to access active directory, more specifically spring ldap. a group search by objectGUID yields no results when the filter is encoded as specified in rfc2254. this is the guid in its hex representation: \49\00\f2\58\1e\93\69\4b\ba\5f\8b\86\54\e9\d8\e9 spring ldap encodes the filter like that: (&(objectClass=group)(objectGUID=\5c49\5c00\5cf2\5c58\5c1e\5c93\5c69\5c4b\5cba\5c5f\5c8b\5c86\5c54\5ce9\5cd8\5ce9)) as mentioned in rfc2254 and in microsoft technet: the character must

问题 We have a WPF application. We would like to resrict access to the application based on the users AD group membership. Could we do this as an attribute on each view, or as a check when the user starts the application? Any code example would be appreciated. 回答1: The easiest way to do this on .NET 3.5 and up would be to use the System.DirectoryServices.AccountManagement (S.DS.AM) namespace. Read all about it here: Managing Directory Security Principals in the .NET Framework 3.5 MSDN docs on

问题 We have a security module which, based on group/role membership, controls permissions to resources in ASP.Net. I've built a custom ASP.Net Role Provider that queries Active Directory for group membership and which is used by this module. Security checking works as follows for each request (caching used in places for performance reasons but excluded from this list): Query AD for list of users group memberships Query database for a list of users and groups with access to the requested resource

问题 I wrote this to get the groups a particular user belongs to: DirectoryEntry AD = new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer"); DirectoryEntry user = AD.Children.Find(completeUserName, "user"); object obGroups = AD.Invoke("Groups"); foreach (object ob in (IEnumerable)obGroups) { // Create object for each group. DirectoryEntry obGpEntry = new DirectoryEntry(ob); listOfMyWindowsGroups.Add(obGpEntry.Name); } for (int j = 0; j < listOfMyWindowsGroups.Count; j++) { //ex }