转自:http://www.sobnb.com/u/92/20081406091447.html

using System;
using System.DirectoryServices;
 
namespace SystemFrameworks.Helper
{
     ///
     ///活动目录辅助类。封装一系列活动目录操作相关的方法。
     ///
     public sealed class ADHelper
     {
         ///
         ///域名
         ///
         private static string DomainName = "MyDomain";
         ///
         /// LDAP 地址
         ///
         private static string LDAPDomain = "DC=MyDomain,DC=local";
         ///
         /// LDAP绑定路径
         ///
         private static string ADPath = "LDAP://brooks.mydomain.local";
         ///
         ///登录帐号
         ///
         private static string ADUser = "Administrator";
         ///
         ///登录密码
         ///
         private static string ADPassword = "password";
         ///
         ///扮演类实例
         ///
         private static IdentityImpersonation impersonate = new IdentityImpersonation(ADUser, ADPassword, DomainName);
 
         ///
         ///用户登录验证结果
         ///
         public enum LoginResult
         {
              ///
              ///正常登录
              ///
              LOGIN_USER_OK = 0,
              ///
              ///用户不存在
              ///
              LOGIN_USER_DOESNT_EXIST,
              ///
              ///用户帐号被禁用
              ///
              LOGIN_USER_ACCOUNT_INACTIVE,
              ///
              ///用户密码不正确
              ///
              LOGIN_USER_PASSWORD_INCORRECT
         }
 
         ///
         ///用户属性定义标志
         ///
         public enum ADS_USER_FLAG_ENUM
         {
              ///
              ///登录脚本标志。如果通过 ADSI LDAP 进行读或写操作时,该标志失效。如果通过 ADSI WINNT,该标志为只读。
              ///
              ADS_UF_SCRIPT = 0X0001,
              ///
              ///用户帐号禁用标志
              ///
              ADS_UF_ACCOUNTDISABLE = 0X0002,
              ///
              ///主文件夹标志
              ///
              ADS_UF_HOMEDIR_REQUIRED = 0X0008,
              ///
              ///过期标志
              ///
              ADS_UF_LOCKOUT = 0X0010,
              ///
              ///用户密码不是必须的
              ///
              ADS_UF_PASSWD_NOTREQD = 0X0020,
              ///
              ///密码不能更改标志
              ///
              ADS_UF_PASSWD_CANT_CHANGE = 0X0040,
              ///
              ///使用可逆的加密保存密码
              ///
              ADS_UF_ENCRYPTED_TEXT_PASSWORD_ALLOWED = 0X0080,
              ///
              ///本地帐号标志
              ///
              ADS_UF_TEMP_DUPLICATE_ACCOUNT = 0X0100,
              ///
              ///普通用户的默认帐号类型
              ///
              ADS_UF_NORMAL_ACCOUNT = 0X0200,
              ///
              ///跨域的信任帐号标志
              ///
              ADS_UF_INTERDOMAIN_TRUST_ACCOUNT = 0X0800,
              ///
              ///工作站信任帐号标志
              ///
              ADS_UF_WORKSTATION_TRUST_ACCOUNT = 0x1000,
              ///
              ///服务器信任帐号标志
              ///
              ADS_UF_SERVER_TRUST_ACCOUNT = 0X2000,
              ///
              ///密码永不过期标志
              ///
              ADS_UF_DONT_EXPIRE_PASSWD = 0X10000,
              ///
              /// MNS 帐号标志
              ///
              ADS_UF_MNS_LOGON_ACCOUNT = 0X20000,
              ///
              ///交互式登录必须使用智能卡
              ///
              ADS_UF_SMARTCARD_REQUIRED = 0X40000,
              ///
              ///当设置该标志时,服务帐号(用户或计算机帐号)将通过 Kerberos 委托信任
              ///
              ADS_UF_TRUSTED_FOR_DELEGATION = 0X80000,
              ///
              ///当设置该标志时,即使服务帐号是通过 Kerberos 委托信任的,敏感帐号不能被委托
              ///
              ADS_UF_NOT_DELEGATED = 0X100000,
              ///
              ///此帐号需要 DES 加密类型
              ///
              ADS_UF_USE_DES_KEY_ONLY = 0X200000,
              ///
              ///不要进行 Kerberos 预身份验证
              ///
              ADS_UF_DONT_REQUIRE_PREAUTH = 0X4000000,
              ///
              ///用户密码过期标志
              ///
              ADS_UF_PASSWORD_EXPIRED = 0X800000,
              ///
              ///用户帐号可委托标志
              ///
              ADS_UF_TRUSTED_TO_AUTHENTICATE_FOR_DELEGATION = 0X1000000
         }
 
         public ADHelper()
         {
              //
         }
 
         #region GetDirectoryObject
 
         ///
         ///获得DirectoryEntry对象实例,以管理员登陆AD
         ///
         ///
         private static DirectoryEntry GetDirectoryObject()
         {
              DirectoryEntry entry = new DirectoryEntry(ADPath, ADUser, ADPassword, AuthenticationTypes.Secure);
              return entry;
         }
 
         ///
         ///根据指定用户名和密码获得相应DirectoryEntry实体
         ///
         ///
         ///
         ///
         private static DirectoryEntry GetDirectoryObject(string userName, string password)
         {
              DirectoryEntry entry = new DirectoryEntry(ADPath, userName, password, AuthenticationTypes.None);
              return entry;
         }
 
         ///
         /// i.e. /CN=Users,DC=creditsights, DC=cyberelves, DC=Com
         ///
         ///
         ///
         private static DirectoryEntry GetDirectoryObject(string domainReference)
         {
              DirectoryEntry entry = new DirectoryEntry(ADPath + domainReference, ADUser, ADPassword, AuthenticationTypes.Secure);
              return entry;
         }
 
         ///
         ///获得以UserName,Password创建的DirectoryEntry
         ///
         ///
         ///
         ///
         ///
         private static DirectoryEntry GetDirectoryObject(string domainReference, string userName, string password)
         {
              DirectoryEntry entry = new DirectoryEntry(ADPath + domainReference, userName, password, AuthenticationTypes.Secure);
              return entry;
         }
 
         #endregion
 
         #region GetDirectoryEntry
 
         ///
         ///根据用户公共名称取得用户的 对象
         ///
         ///
用户公共名称

         ///如果找到该用户,则返回用户的 对象;否则返回 null
         public static DirectoryEntry GetDirectoryEntry(string commonName)
         {
              DirectoryEntry de = GetDirectoryObject();
              DirectorySearcher deSearch = new DirectorySearcher(de);
              deSearch.Filter = "(&(&(objectCategory=person)(objectClass=user))(cn=" + commonName + "))";
              deSearch.SearchScope = SearchScope.Subtree;
 
              try
              {
                   SearchResult result = deSearch.FindOne();
                   de = new DirectoryEntry(result.Path);
                   return de;
              }
              catch
              {
                   return null;
              }
         }
 
         ///
         ///根据用户公共名称和密码取得用户的 对象。
         ///
         ///

用户公共名称

         ///

用户密码

         ///如果找到该用户,则返回用户的 对象;否则返回 null
         public static DirectoryEntry GetDirectoryEntry(string commonName, string password)
         {
              DirectoryEntry de = GetDirectoryObject(commonName, password);
              DirectorySearcher deSearch = new DirectorySearcher(de);
              deSearch.Filter = "(&(&(objectCategory=person)(objectClass=user))(cn=" + commonName + "))";
              deSearch.SearchScope = SearchScope.Subtree;
 
              try
              {
                   SearchResult result = deSearch.FindOne();
                   de = new DirectoryEntry(result.Path);
                   return de;
              }
              catch
              {
                   return null;
              }
         }
 
         ///
         ///根据用户帐号称取得用户的 对象
         ///
         ///

用户帐号名

         ///如果找到该用户,则返回用户的 对象;否则返回 null
         public static DirectoryEntry GetDirectoryEntryByAccount(string sAMAccountName)
         {
              DirectoryEntry de = GetDirectoryObject();
              DirectorySearcher deSearch = new DirectorySearcher(de);
              deSearch.Filter = "(&(&(objectCategory=person)(objectClass=user))(sAMAccountName=" + sAMAccountName + "))";
              deSearch.SearchScope = SearchScope.Subtree;
 
              try
              {
                   SearchResult result = deSearch.FindOne();
                   de = new DirectoryEntry(result.Path);
                   return de;
              }
              catch
              {
                   return null;
              }
         }
 
         ///
         ///根据用户帐号和密码取得用户的 对象
         ///
         ///

用户帐号名

         ///

用户密码

         ///如果找到该用户,则返回用户的 对象;否则返回 null
         public static DirectoryEntry GetDirectoryEntryByAccount(string sAMAccountName, string password)
         {
              DirectoryEntry de = GetDirectoryEntryByAccount(sAMAccountName);
              if (de != null)
              {
                   string commonName = de.Properties["cn"][0].ToString();
 
                   if (GetDirectoryEntry(commonName, password) != null)
                       return GetDirectoryEntry(commonName, password);
                   else
                       return null;
              }
              else
              {
                   return null;
              }
         }
 
         ///
         ///根据组名取得用户组的 对象
         ///
         ///

组名

         ///
         public static DirectoryEntry GetDirectoryEntryOfGroup(string groupName)
         {
              DirectoryEntry de = GetDirectoryObject();
              DirectorySearcher deSearch = new DirectorySearcher(de);
              deSearch.Filter = "(&(objectClass=group)(cn=" + groupName + "))";
              deSearch.SearchScope = SearchScope.Subtree;
 
              try
              {
                   SearchResult result = deSearch.FindOne();
                   de = new DirectoryEntry(result.Path);
                   return de;
              }
              catch
              {
                   return null;
              }
         }
 
         #endregion
 
         #region GetProperty
 
         ///
         ///获得指定 指定属性名对应的值
         ///
         ///
         ///

属性名称

         ///属性值
         public static string GetProperty(DirectoryEntry de, string propertyName)
         {
              if(de.Properties.Contains(propertyName))
              {
                   return de.Properties[propertyName][0].ToString() ;
              }
              else
              {
                   return string.Empty;
              }
         }
 
         ///
         ///获得指定搜索结果 中指定属性名对应的值
         ///
         ///
         ///

属性名称

         ///属性值
         public static string GetProperty(SearchResult searchResult, string propertyName)
         {
              if(searchResult.Properties.Contains(propertyName))
              {
                   return searchResult.Properties[propertyName][0].ToString() ;
              }
              else
              {
                   return string.Empty;
              }
         }
 
         #endregion
 
         ///
         ///设置指定 的属性值
         ///
         ///
         ///

属性名称

         ///

属性值

         public static void SetProperty(DirectoryEntry de, string propertyName, string propertyValue)
         {
              if(propertyValue != string.Empty || propertyValue != "" || propertyValue != null)
              {
                   if(de.Properties.Contains(propertyName))
                   {
                       de.Properties[propertyName][0] = propertyValue;
                   }
                   else
                   {
                       de.Properties[propertyName].Add(propertyValue);
                   }
              }
         }
 
         ///
         ///创建新的用户
         ///
         ///

DN 位置。例如:OU=共享平台 或 CN=Users

         ///

公共名称

         ///

帐号

         ///

密码

         ///
         public static DirectoryEntry CreateNewUser(string ldapDN, string commonName, string sAMAccountName, string password)
         {
              DirectoryEntry entry = GetDirectoryObject();
              DirectoryEntry subEntry = entry.Children.Find(ldapDN);
              DirectoryEntry deUser = subEntry.Children.Add("CN=" + commonName, "user");
              deUser.Properties["sAMAccountName"].Value = sAMAccountName;
              deUser.CommitChanges();
              ADHelper.EnableUser(commonName);
              ADHelper.SetPassword(commonName, password);
              deUser.Close();
              return deUser;
         }
 
         ///
         ///创建新的用户。默认创建在 Users 单元下。
         ///
         ///

公共名称

         ///

帐号

         ///

密码

         ///
         public static DirectoryEntry CreateNewUser(string commonName, string sAMAccountName, string password)
         {
              return CreateNewUser("CN=Users", commonName, sAMAccountName, password);
         }
 
         ///
         ///判断指定公共名称的用户是否存在
         ///
         ///

用户公共名称

         ///如果存在,返回 true;否则返回 false
         public static bool IsUserExists(string commonName)
         {
              DirectoryEntry de = GetDirectoryObject();
              DirectorySearcher deSearch = new DirectorySearcher(de);
              deSearch.Filter = "(&(&(objectCategory=person)(objectClass=user))(cn=" + commonName + "))";       // LDAP 查询串
              SearchResultCollection results = deSearch.FindAll();
 
              if (results.Count == 0)
                   return false;
              else
                   return true;
         }
 
         ///
         ///判断用户帐号是否激活
         ///
         ///

用户帐号属性控制器

         ///如果用户帐号已经激活,返回 true;否则返回 false
         public static bool IsAccountActive(int userAccountControl)
         {
              int userAccountControl_Disabled = Convert.ToInt32(ADS_USER_FLAG_ENUM.ADS_UF_ACCOUNTDISABLE);
              int flagExists = userAccountControl & userAccountControl_Disabled;
 
              if (flagExists > 0)
                   return false;
              else
                   return true;
         }
 
         ///
         ///判断用户与密码是否足够以满足身份验证进而登录
         ///
         ///

用户公共名称

         ///

密码

         ///如能可正常登录,则返回 true;否则返回 false
         public static LoginResult Login(string commonName, string password)
         {
              DirectoryEntry de = GetDirectoryEntry(commonName);
 
              if (de != null)
              {
                   // 必须在判断用户密码正确前,对帐号激活属性进行判断;否则将出现异常。
                   int userAccountControl = Convert.ToInt32(de.Properties["userAccountControl"][0]);
                   de.Close();
 
                   if (!IsAccountActive(userAccountControl))
                       return LoginResult.LOGIN_USER_ACCOUNT_INACTIVE;
 
                   if (GetDirectoryEntry(commonName, password) != null)
                       return LoginResult.LOGIN_USER_OK;
                   else
                       return LoginResult.LOGIN_USER_PASSWORD_INCORRECT;
              }
              else
              {
                   return LoginResult.LOGIN_USER_DOESNT_EXIST;
              }
         }
 
         ///
         ///判断用户帐号与密码是否足够以满足身份验证进而登录
         ///
         ///

用户帐号

         ///

密码

         ///如能可正常登录,则返回 true;否则返回 false
         public static LoginResult LoginByAccount(string sAMAccountName, string password)
         {
              DirectoryEntry de = GetDirectoryEntryByAccount(sAMAccountName);
                  
              if (de != null)
              {
                   // 必须在判断用户密码正确前,对帐号激活属性进行判断;否则将出现异常。
                   int userAccountControl = Convert.ToInt32(de.Properties["userAccountControl"][0]);
                   de.Close();
 
                   if (!IsAccountActive(userAccountControl))
                       return LoginResult.LOGIN_USER_ACCOUNT_INACTIVE;
 
                   if (GetDirectoryEntryByAccount(sAMAccountName, password) != null)
                       return LoginResult.LOGIN_USER_OK;
                   else
                       return LoginResult.LOGIN_USER_PASSWORD_INCORRECT;
              }
              else
              {
                   return LoginResult.LOGIN_USER_DOESNT_EXIST;
              }
         }
 
         ///
         ///设置用户密码,管理员可以通过它来修改指定用户的密码。
         ///
         ///

用户公共名称

         ///

用户新密码

         public static void SetPassword(string commonName, string newPassword)
         {
              DirectoryEntry de = GetDirectoryEntry(commonName);
             
              // 模拟超级管理员,以达到有权限修改用户密码
              impersonate.BeginImpersonate();
              de.Invoke("SetPassword", new object[]{newPassword});
              impersonate.StopImpersonate();
 
              de.Close();
         }
 
         ///
         ///设置帐号密码,管理员可以通过它来修改指定帐号的密码。
         ///
         ///

用户帐号

         ///

用户新密码

         public static void SetPasswordByAccount(string sAMAccountName, string newPassword)
         {
              DirectoryEntry de = GetDirectoryEntryByAccount(sAMAccountName);
 
              // 模拟超级管理员,以达到有权限修改用户密码
              IdentityImpersonation impersonate = new IdentityImpersonation(ADUser, ADPassword, DomainName);
              impersonate.BeginImpersonate();
              de.Invoke("SetPassword", new object[]{newPassword});
              impersonate.StopImpersonate();
 
              de.Close();
         }
 
         ///
         ///修改用户密码
         ///
         ///

用户公共名称

         ///

旧密码

         ///

新密码

         public static void ChangeUserPassword (string commonName, string oldPassword, string newPassword)
         {
              // to-do: 需要解决密码策略问题
              DirectoryEntry oUser = GetDirectoryEntry(commonName);
              oUser.Invoke("ChangePassword", new Object[]{oldPassword, newPassword});
              oUser.Close();
         }
 
         ///
         ///启用指定公共名称的用户
         ///
         ///

用户公共名称

         public static void EnableUser(string commonName)
         {
              EnableUser(GetDirectoryEntry(commonName));
         }
 
         ///
         ///启用指定 的用户
         ///
         ///
         public static void EnableUser(DirectoryEntry de)
         {
              impersonate.BeginImpersonate();
              de.Properties["userAccountControl"][0] = ADHelper.ADS_USER_FLAG_ENUM.ADS_UF_NORMAL_ACCOUNT | ADHelper.ADS_USER_FLAG_ENUM.ADS_UF_DONT_EXPIRE_PASSWD;
              de.CommitChanges();
              impersonate.StopImpersonate();
              de.Close();
         }
 
         ///
         ///禁用指定公共名称的用户
         ///
         ///

用户公共名称

         public static void DisableUser(string commonName)
         {
              DisableUser(GetDirectoryEntry(commonName));
         }
 
         ///
         ///禁用指定 的用户
         ///
         ///
         public static void DisableUser(DirectoryEntry de)
         {
              impersonate.BeginImpersonate();
              de.Properties["userAccountControl"][0]=ADHelper.ADS_USER_FLAG_ENUM.ADS_UF_NORMAL_ACCOUNT | ADHelper.ADS_USER_FLAG_ENUM.ADS_UF_DONT_EXPIRE_PASSWD | ADHelper.ADS_USER_FLAG_ENUM.ADS_UF_ACCOUNTDISABLE;
              de.CommitChanges();
              impersonate.StopImpersonate();
              de.Close();
         }
 
         ///
         ///将指定的用户添加到指定的组中。默认为 Users 下的组和用户。
         ///
         ///

用户公共名称

         ///

组名

         public static void AddUserToGroup(string userCommonName, string groupName)
          {
              DirectoryEntry oGroup = GetDirectoryEntryOfGroup(groupName);
              DirectoryEntry oUser = GetDirectoryEntry(userCommonName);
             
              impersonate.BeginImpersonate();
              oGroup.Properties["member"].Add(oUser.Properties["distinguishedName"].Value);
              oGroup.CommitChanges();
              impersonate.StopImpersonate();
 
              oGroup.Close();
              oUser.Close();
         }
 
         ///
         ///将用户从指定组中移除。默认为 Users 下的组和用户。
         ///
         ///

用户公共名称

         ///

组名

         public static void RemoveUserFromGroup(string userCommonName, string groupName)
         {
              DirectoryEntry oGroup = GetDirectoryEntryOfGroup(groupName);
              DirectoryEntry oUser = GetDirectoryEntry(userCommonName);
             
              impersonate.BeginImpersonate();
              oGroup.Properties["member"].Remove(oUser.Properties["distinguishedName"].Value);
              oGroup.CommitChanges();
              impersonate.StopImpersonate();
 
              oGroup.Close();
              oUser.Close();
         }
 
     }
 
     ///
     ///用户模拟角色类。实现在程序段内进行用户角色模拟。
     ///
     public class IdentityImpersonation
     {
         [DllImport("advapi32.dll", SetLastError=true)]
         public static extern bool LogonUser(String lpszUsername, String lpszDomain, String lpszPassword, int dwLogonType, int dwLogonProvider, ref IntPtr phToken);
 
         [DllImport("advapi32.dll", CharSet=CharSet.Auto, SetLastError=true)]
         public extern static bool DuplicateToken(IntPtr ExistingTokenHandle, int SECURITY_IMPERSONATION_LEVEL, ref IntPtr DuplicateTokenHandle);
 
         [DllImport("kernel32.dll", CharSet=CharSet.Auto)]
         public extern static bool CloseHandle(IntPtr handle);
 
         // 要模拟的用户的用户名、密码、域(机器名)
         private String _sImperUsername;
         private String _sImperPassword;
         private String _sImperDomain;
         // 记录模拟上下文
         private WindowsImpersonationContext _imperContext;
         private IntPtr _adminToken;
         private IntPtr _dupeToken;
         // 是否已停止模拟
         private Boolean _bClosed;
 
         ///
         ///构造函数
         ///
         ///

所要模拟的用户的用户名

         ///

所要模拟的用户的密码

         ///

所要模拟的用户所在的域

         public IdentityImpersonation(String impersonationUsername, String impersonationPassword, String impersonationDomain)
         {
              _sImperUsername = impersonationUsername;
              _sImperPassword = impersonationPassword;
              _sImperDomain = impersonationDomain;
 
              _adminToken = IntPtr.Zero;
              _dupeToken = IntPtr.Zero;
              _bClosed = true;
         }
 
         ///
         ///析构函数
         ///
         ~IdentityImpersonation()
         {
              if(!_bClosed)
              {
                   StopImpersonate();
              }
         }
 
         ///
         ///开始身份角色模拟。
         ///
         ///
         public Boolean BeginImpersonate()
         {
              Boolean bLogined = LogonUser(_sImperUsername, _sImperDomain, _sImperPassword, 2, 0, ref _adminToken);
                       
              if(!bLogined)
              {
                   return false;
              }
 
              Boolean bDuped = DuplicateToken(_adminToken, 2, ref _dupeToken);
 
              if(!bDuped)
              {
                   return false;
              }
 
              WindowsIdentity fakeId = new WindowsIdentity(_dupeToken);
              _imperContext = fakeId.Impersonate();
 
              _bClosed = false;
 
              return true;
         }
 
         ///
         ///停止身分角色模拟。
         ///
         public void StopImpersonate()
         {
              _imperContext.Undo();
              CloseHandle(_dupeToken);
              CloseHandle(_adminToken);
              _bClosed = true;
         }
     }
 
}

=====================================================

简单的应用

[WebMethod]
  public string IsAuthenticated(string UserID,string Password)
  {
            string _path = "LDAP://" + adm + "/DC=lamda,DC=com,DC=cn";//"LDAP://172.75.200.1/DC=名字,DC=com,DC=cn";
   string _filterAttribute=null;
  
   DirectoryEntry entry = new DirectoryEntry(_path,UserID,Password);
   
   try
   {
    //Bind to the native AdsObject to force authentication.
    DirectorySearcher search = new DirectorySearcher(entry);
    search.Filter = "(SAMAccountName=" + UserID + ")";
    SearchResult result = search.FindOne();
    
    if(null == result)
    {
     _filterAttribute="登录失败: 未知的用户名或错误密码.";
    }
    else
    {
     _filterAttribute="true";
    }
   
   }
   catch (Exception ex)
   {
//    if(ex.Message.StartsWith("该服务器不可操作")) 
//    {
//     string mail = ADO.GetConnString("mail");
//     entry.Path = "LDAP://"+mail+"/OU=名字,DC=it2004,DC=gree,DC=com,DC=cn";
//     try
//     { 
//      DirectorySearcher search = new DirectorySearcher(entry);
//      search.Filter = "(SAMAccountName=" + UserID + ")";
//      SearchResult result = search.FindOne();
//
//      if(null == result)
//      {
//       _filterAttribute="登录失败: 未知的用户名或错误密码.";
//      }
//      else
//      {
//       _filterAttribute="true";
//      }
//      return _filterAttribute;
//   
//     }
//     catch (Exception ex1)
//     {
//      return ex1.Message;
//     }
//     
//    }
//    else
     return ex.Message;
   }
   return _filterAttribute;
  }
  [WebMethod]
  public string[] LDAPMessage(string UserID)
  {
   string _path = "LDAP://"+adm+"/DC=it2004,DC=名字,DC=com,DC=cn";
   string[] _filterAttribute=new string[5];
   string[] msg = {"samaccountname","displayname","department","company"};

DirectoryEntry entry = new DirectoryEntry(_path,"180037","790813");

try
   {

Object obj = entry.NativeObject;
    
    DirectorySearcher search = new DirectorySearcher(entry);
    search.Filter = "(SAMAccountName=" + UserID + ")";
    SearchResult result = search.FindOne();

if(null == result)
    {
     _filterAttribute[0]="登录失败: 未知的用户名或错误密码.";
    }
    else
    {
     _filterAttribute[0]="true";  
     for(int propertyCounter = 1; propertyCounter < 5; propertyCounter++)
     {
       
      if(propertyCounter==4 &&  result.Properties[msg[propertyCounter-1]][0]==null)
       break;
      _filterAttribute[propertyCounter]=result.Properties[msg[propertyCounter-1]][0].ToString();
      
     }
    }
   
   }
   catch (Exception ex)
   {
    //_filterAttribute[0]=ex.Message;
   }
   return _filterAttribute;
  }
  [WebMethod]
  public string[] AllMembers() 
  {
   
   string[] msg;
   string _path = "LDAP://名字";

DirectoryEntry entry = new DirectoryEntry(_path,"180037","790813");
   
 
   //Bind to the native AdsObject to force authentication.
   Object obj = entry.NativeObject;

System.DirectoryServices.DirectorySearcher mySearcher = new System.DirectoryServices.DirectorySearcher(entry);
   mySearcher.Filter = "(SAMAccountName=180037)";
   msg=new string[mySearcher.FindAll().Count];
   int i=0;
   foreach(System.DirectoryServices.SearchResult result in mySearcher.FindAll()) 
   {
    msg[i++]=result.Path;
   }
   return msg;
  }
 
 }

C# 域用户操作(转)的更多相关文章

  1. ADHelper C#域用户操作(转)

    using System; using System.Collections.Generic; using System.DirectoryServices; using System.Linq; u ...

  2. AD 域服务简介(三)- Java 对 AD 域用户的增删改查操作

    博客地址:http://www.moonxy.com 关于AD 域服务器搭建及其使用,请参阅:AD 域服务简介(一) - 基于 LDAP 的 AD 域服务器搭建及其使用 Java 获取 AD 域用户, ...

  3. C#操作域用户ADHelper

    在C#中操作域用户,在项目中写的帮助类: using System; using System.Collections.Generic; using System.DirectoryServices; ...

  4. (转)从0开始搭建SQL Server AlwaysOn 第一篇(配置域控+域用户DCADMIN)

    原文地址: http://www.cnblogs.com/lyhabc/p/4678330.html 实验环境: 准备工作 软件准备 (1) SQL Server 2012 (2) Windows S ...

  5. 解决服务器SID引起虚拟机不能加入AD域用户,无法远程登录的问题

    最近在公司搭建AD域控制器,发现无法在计算机真正添加域用户,也就是添加的用户虽然可以在本地登录,但是无法远程登录,尝试多种方法都无法解决,而最终原因居然是虚拟机导致的服务器的SID冲突.本文记录下该问 ...

  6. Runas命令:能让域用户/普通User用户以管理员身份运行指定程序。

    注:本文由Colin撰写,版权所有!转载请注明原文地址,谢谢合作! 在某些情况下,为了安全起见,大部分公司都会使用域控制器或只会给员工电脑user的用户权限,这样做能大大提高安全性和可控性,但由此也带 ...

  7. python-ldap修改AD域用户密码(CA+SSL)

    代码连接:https://github.com/raykuan/ldap-notes 使用python的ldap模块连接AD服务器,有两种方式: 非加密:con = ldap.initialize(' ...

  8. java修改AD域用户密码使用SSL连接方式

    正常情况下,JAVA修改AD域用户属性,只能修改一些普通属性, 如果要修改AD域用户密码和userAccountControl属性就得使用SSL连接的方式修改, SSL连接的方式需要操作以下步骤: 1 ...

  9. 在Windows Server 2008 R2中使用web方式修改域用户账户密码

    在Windows的domain环境下,加域的客户端修改账户密码是一件很easy的事情:即使没有加域的客户端如果组织中,使用Exchange邮件系统,借助Exchange的owa也可以轻松修改账户密码. ...

随机推荐

  1. Nginx启动、关闭、重新加载脚本

    #! /bin/sh # Default-Start: 2 3 4 5 # Default-Stop: 0 1 6 # Short-Description: starts the nginx web ...

  2. 分享一个解决MySQL写入中文乱码的方法

    分享一个解决MySQL写入中文乱码的方法 之前有发帖请教过如何解决MySQL写入中文乱码的问题.但没人会,或者是会的人不想回答.搜索网上的答案并尝试很多次无效,所以当时就因为这个乱码问题搁浅了一个软件 ...

  3. codeforces 487B B. Strip(RMQ+二分+dp)

    题目链接: B. Strip time limit per test 1 second memory limit per test 256 megabytes input standard input ...

  4. codeforces 487A A. Fight the Monster(二分)

    题目链接: A. Fight the Monster time limit per test 1 second memory limit per test 256 megabytes input st ...

  5. maven 多工程搭建演示

    maven出现后,很多公司会用maven来构建项目,单仅仅只是单项目单工程的 并没有使用多工程来构建,这样在以后,项目越来越大,业务越来越多以后,项目会难以维护,越发庞大,维护成本提高,团队士气也会下 ...

  6. NGUI OnChange Event

    那些组件有OnChange? 下面这些组件都有OnChange事件,当你点击,下拉选择时,就会触发它们. NGUI中对应的组件 PopupList (下拉列表) Toggle (复选框) Input ...

  7. UMLUnified Modeling Language (UML)又称统一建模语言或标准建模语言

    1.用例图(use case diagram) 2.活动图(activity diagram) 3.静态结构图 4.顺序图(Sequence Diagram):时序图 5.交互纵览图(Interact ...

  8. js原生选项卡(包含无缝滚动轮播图)一

    原生js选项卡的几种写法,整片文章我会由简及难的描述几种常用的原生选项卡的写法: Improve little by little every day! 1>基本选项卡: 思路:循环中先清除再添 ...

  9. Centos7下修改默认网卡名(改为eth0)的操作记录

    安装好centos7版本的系统后,发现默认的网卡名字有点怪,为了便于管理,可以手动修改.下面对centos7版本下网卡重命名操作做一记录:1)编辑网卡信息[root@linux-node2~]# cd ...

  10. POJ 3974 Palindrome

    D - Palindrome Time Limit:15000MS     Memory Limit:65536KB     64bit IO Format:%I64d & %I64u Sub ...