LDAP DirectorySearcher with MemberOf property

Question

LDAP DirectorySearcher with MemberOf property

I want to find all the users who are members of a group in a specific organizational unit, so my filter will look something like this:

(& (object = user) (memberOf = * OU = something, OU = yes, DC = DEV, DC = local))

Is there a way to run directorysearcher in a memberof property with a wildcard?

+3

c # active-directory ldap

Jason Oct 2 '09 at 17:13

source share

5 answers

memberOf.

0

scottm 02 . '09 17:16

marc_s · Answer 1 · 2009-10-02T18:26:01+0000

You need to set the OU that you want to look up as the root of your DirectorySearcher:

DirectoryEntry myOU = new DirectoryEntry("OU=something,OU=yep,DC=dev,DC=local");
DirectorySearcher srch = new DirectorySearcher(myOU);
srch.SearchScope = SearchScope.Subtree;

objectCategory = person . objectCategory, , , , objectClass ( ):

srch.Filter = "(objectCategory=person)";

, OU, :

srch.Filter = "(&(objectCategory=person)(memberOf=cn=Group,ou=yep,dc=dev,dc=local))";

- , LDAP , RDN, DN .

Martin v. Löwis · Answer 2 · 2009-10-02T19:13:14+0000

, DN Active Directory.

JuanZe · Answer 3 · 2009-10-02T17:33:23+0000

memberOf. "(objectClass=user)"

rsapru · Answer 4 · 2011-01-24T09:32:11+0000

This is how I did it. The LDAP name is the group for which you need members.

DirectoryEntry entry = new DirectoryEntry("LDAP://<COMPANYLDAP>/CN=<Group Name>,OU=something,OU=yep,DC=dev,DC=local");
DirectorySearcher Dsearch = new DirectorySearcher(entry);
SearchResult sResultSet = Dsearch.FindOne();
GetProperty(sResultSet, "member");



 public static void GetProperty(SearchResult searchResult, string PropertyName)
        {
            StringBuilder strb = new StringBuilder();
            if (searchResult.Properties.Contains(PropertyName))
            {

                ResultPropertyValueCollection rc = searchResult.Properties[PropertyName];
                foreach (string name in rc)
                {
                    DirectoryEntry entry = new DirectoryEntry("LDAP://<COMPANYLDAP>/" + name);
                    DirectorySearcher Dsearch = new DirectorySearcher(entry);
                    //Dsearch.Filter = name;
                    SearchResult sResultSet = Dsearch.FindOne();
                    strb.AppendLine(GetPropertyvalue(sResultSet, "displayname") + "," + GetPropertyvalue(sResultSet, "mail"));
                }


            }

            File.WriteAllText(strb.ToString(), "c:\\Users.txt");
        }

LDAP DirectorySearcher with MemberOf property

More articles: