All geek questions in one place

How to remove all users from an Active Directory group?

I am trying to remove all users from an AD group with the following code:

private void RemoveStudents() {
        foreach (DirectoryEntry childDir in rootRefreshDir.Children) {
            DirectoryEntry groupDE = new DirectoryEntry(childDir.Path);

            for (int counter = 0; counter < groupDE.Properties["member"].Count; counter++) {
                groupDE.Properties["member"].Remove(groupDE.Properties["member"][counter]);
                groupDE.CommitChanges();
                groupDE.Close(); 
            }             
        }      
    }

rootRefreshDir is a directory containing all AD groups (childDir).

What I find here is that this code is not behaving correctly. It deletes users, but it does not do this after the first launch. These are "some." Then I start it again and again, and again - depending on how many users need to be removed in the group. I'm not sure why it works that way.

Can someone help me fix this code or provide an alternative method to delete all users in the group?

+3
source share
5 answers

, ... 0. index - 1 . 1, , , 0. : .

for while (groupDE.Properties["member"].Count > 0) 0 .

+4

, .

for , :

PropertyValueCollection members = groupDE.Properties["member"];
for (int counter = members.Count - 1; counter >= 0; counter--) {
    members.RemoveAt(counter);
    groupDE.CommitChanges();
    groupDE.Close(); 
}
+5

,

DirectoryServices.AccountManagement.GroupPrincipal (.NET 3.5 +):

:

groupPrincipal.Members.Clear();
groupPrincipal.Save();
+4

:

group.Properties["member"].Clear();
group.CommitChanges();
+2

CodeProject :

"How to do (almost) everything in AD: http://www.codeproject.com/KB/system/everythingInAD.aspx

0
source

Source: https://habr.com/ru/post/1749049/

More articles:


All Articles