tag:blogger.com,1999:blog-48803646744507680672012-02-16T19:13:01.859-08:00Praveen'sPraveen Rangarajanhttp://www.blogger.com/profile/10501638623047223714noreply@blogger.comBlogger11100tag:blogger.com,1999:blog-4880364674450768067.post-57048348742424477042009-06-30T07:29:00.001-07:002009-06-30T08:10:20.099-07:00C# class to validate User credentials on Active Directory (LDAP)I have seen a lot of folks trying to build a SSO int(er|ra)net web application, and end up using Windows Authentication because its tough for them to write a AD connector. Trust me guys its not too hard, not with google around :). <div>Anyway here's yet another SSO implementation (happens to be mine :)).<br /><div>Its fairly easy to use the class. Just 2 public static routines. One to validate a user's credential, and the other to retrieve all users from the AD. Part one is self explanatory. Part two was important for me because I do roles management (and no I dont use Membership Providers - its either too little or too much). <div><br /></div><div>Here's the full implementation. Let me know if you have trouble using it. btw, a sample usage:</div><div>1. <span class="Apple-style-span" style=" ;font-family:Helvetica, fantasy;font-size:10px;"><span style="color:#0000ff;">if</span> (!<span style="color:#2b91af;">String</span>.IsNullOrEmpty(string errorMessage = <span style="color:#2b91af;">ADConnector</span>.AuthenticateUserPassword("LDAP://secure.company.com", "tech1", "tech1234")))</span></div><div><span class="Apple-style-span" style="font-family:Helvetica, -webkit-fantasy;font-size:85%;"><span class="Apple-style-span" style="font-size:10px;"><span class="Apple-tab-span" style="white-space:pre"> </span>{</span></span></div><div><span class="Apple-style-span" style="font-family:Helvetica, -webkit-fantasy;font-size:85%;"><span class="Apple-style-span" style="font-size:10px;"><span class="Apple-tab-span" style="white-space:pre"> </span>//blah blah blah</span></span></div><div><span class="Apple-style-span" style="font-family:Helvetica, -webkit-fantasy;font-size:85%;"><span class="Apple-style-span" style="font-size:10px;"><span class="Apple-tab-span" style="white-space:pre"> </span>)</span></span></div><div>2. <span class="Apple-style-span" style=" ;font-family:Helvetica, fantasy;font-size:10px;"> <span style="color:#2b91af;">SearchResultCollection</span> resColl = <span style="color:#2b91af;">ADConnector</span>.DumpAllUsers("LDAP://secure.comapy.com", "admin", "admin1234");</span></div> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">foreach</span> (<span style="color:#2b91af;">SearchResult</span> res <span style="color:#0000ff;">in</span> resColl)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><span class="Apple-tab-span" style="white-space:pre"> </span>//If account is not disabled</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> (!<span style="color:#2b91af;">Convert</span>.ToBoolean(<span style="color:#2b91af;">Convert</span>.ToInt32(res.Properties[<span style="color:#a31515;">"userAccountControl"</span>][0], System.Globalization.<span style="color:#2b91af;">CultureInfo</span>.InvariantCulture) & <span style="color:#2b91af;">ADConnector</span>.UF_DISABLED))</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> //blah blah blah</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><br /></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica">---------------------------------------------------------------------------------ADConnector.cs------------------------------------------------------------------------------------------------</p><div><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><span class="Apple-style-span" style="color:#0000FF;"><br /></span></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><span style="color:#0000ff;">namespace</span> Utilities.Login.SSO</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica">{</p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080">///<span style="color: #008000"> </span><summary<span class="Apple-style-span" style="font-family: Helvetica, -webkit-fantasy; ">></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">/// </span> <span style="color: #808080"><remarks<span class="Apple-style-span" style="font-family: Helvetica, -webkit-fantasy; ">><span class="Apple-style-span" style="color: rgb(0, 128, 0); font-family: Helvetica, fantasy; ">Developed by: Praveen Rangarajan</span></span></span></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #808080"></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">/// </span> <span style="color: #808080"><CR1 date="10/12/2008"</span><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Included the functionality to retrieve all accounts from the AD<span class="Apple-style-span" style="color: rgb(128, 128, 128); font-family: Helvetica, -webkit-fantasy; "></<span class="Apple-style-span" style="font-family: Helvetica, fantasy; ">CR1></span></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">/// </span> <span style="color: #808080"><CR2 date="2/4/2009"</span><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Functionality to return "Locked-out", "Password expired", and "Account disabled" error message<span style="color: #808080"></CR2></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span></remarks<span class="Apple-style-span" style="font-family: Helvetica, -webkit-fantasy; ">></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#808080;"><span class="Apple-style-span" style="color: rgb(128, 128, 128); "><span style="color: #000000"> </span>/// <span style="color: #008000"> </span></summary<span class="Apple-style-span" style="font-family: Helvetica, -webkit-fantasy; ">></span></span></p><p color="#808080" style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; "><span class="Apple-style-span" style="color: rgb(128, 128, 128); "></span>public<span style="color:#000000;"> </span>partial<span style="color:#000000;"> </span>class<span style="color:#000000;"> </span><span style="color:#2b91af;">ADConnector</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">public</span> <span style="color:#0000ff;">const</span> <span style="color:#0000ff;">int</span> UF_DISABLED = 0x0002;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">public</span> <span style="color:#0000ff;">const</span> <span style="color:#0000ff;">int</span> UF_LOCKED = 0x0010;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">public</span> <span style="color:#0000ff;">const</span> <span style="color:#0000ff;">int</span> UF_EXPIRED = 0x800000;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080">///<span style="color: #008000"> </span><summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">///</span> Authenticate the login credentials of the user on the AD.</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span></summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><param name="ldap"<span style="color: #008000"><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Url to the LDAP server alongwith the default DC settings. Example "LDAP://contoso.com, DC=contoso, DC=com"</span></param></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><param name="userName"<span style="color: #008000"><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Domain account of the user. Just the account name is sufficient</span></param></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><param name="password"<span style="color: #008000"><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>User password</span></param></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><returns></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">///</span> null If valid.</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">///</span> Non-empty string with the error message, if invalid.</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span></returns></p><p></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">public</span> <span style="color:#0000ff;">static</span> <span style="color:#0000ff;">string</span> AuthenticateUserPassword(<span style="color:#0000ff;">string</span> ldap, <span style="color:#0000ff;">string</span> userName, <span style="color:#0000ff;">string</span> password, <span class="Apple-style-span" style="color: rgb(0, 0, 255); ">string</span> adminName, <span class="Apple-style-span" style="color: rgb(0, 0, 255); ">string</span> adminPassword)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">try</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">DirectoryEntry</span> deSystem = <span style="color:#0000ff;">new</span> <span style="color:#2b91af;">DirectoryEntry</span>(ldap, userName, password);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">DirectorySearcher</span> s = <span style="color:#0000ff;">new</span> <span style="color:#2b91af;">DirectorySearcher</span>(deSystem, <span style="color:#a31515;">"SAMAccountName="</span> + userName,</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">new</span> <span style="color:#0000ff;">string</span>[] { <span style="color:#a31515;">"userAccountControl"</span> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> , <span style="color:#2b91af;">SearchScope</span>.Subtree);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">SearchResult</span> res;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> ((res = s.FindOne()) == <span style="color:#0000ff;">null</span>)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Username and/or Password incorrect"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> (<span style="color:#2b91af;">Convert</span>.ToBoolean(<span style="color:#2b91af;">Convert</span>.ToInt32(res.Properties[<span style="color:#a31515;">"userAccountControl"</span>][0]) & UF_DISABLED))</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Account has been disabled. Please contact administrator for more details"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">return</span> <span style="color:#0000ff;">null</span>;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">catch</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><span class="Apple-style-span" style="color:#009900;">//User validation returned exception. Now check for Password expired or Account locked out.</span></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><span class="Apple-style-span" style="color:#009900;">// Use the admin account (any account has LDAP query rights) to check for the above condition.</span></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"><br /></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">DirectoryEntry</span> deSystem = <span style="color:#0000ff;">new</span> <span style="color:#2b91af;">DirectoryEntry</span>(ldap, adminName, adminPassword);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">DirectorySearcher</span> s = <span style="color:#0000ff;">new</span> <span style="color:#2b91af;">DirectorySearcher</span>(deSystem, <span style="color:#a31515;">"SAMAccountName="</span> + userName,</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">new</span><span style="color:#000000;"> </span><span style="color:#0000ff;">string</span><span style="color:#000000;">[] { </span>"userAccountControl"<span style="color:#000000;">, </span>"msDS-User-Account-Control-Computed"<span style="color:#000000;"> }</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> , <span style="color:#2b91af;">SearchScope</span>.Subtree);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">SearchResult</span> res;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> ((res = s.FindOne()) == <span style="color:#0000ff;">null</span>)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"User not identified in AD"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> (<span style="color:#2b91af;">Convert</span>.ToBoolean(<span style="color:#2b91af;">Convert</span>.ToInt32(res.Properties[<span style="color:#a31515;">"userAccountControl"</span>][0]) & UF_DISABLED))</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Account has been disabled. Please contact administrator for more details"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> (res.Properties.Contains(<span style="color:#a31515;">"msDS-User-Account-Control-Computed"</span>) &&</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">Convert</span>.ToBoolean(<span style="color:#2b91af;">Convert</span>.ToInt32(res.Properties[<span style="color:#a31515;">"msDS-User-Account-Control-Computed"</span>][0]) & UF_LOCKED))</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Account locked-out. Please contact administrator for more details"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">if</span> (<span style="color:#2b91af;">Convert</span>.ToBoolean(<span style="color:#2b91af;">Convert</span>.ToInt32(res.Properties[<span style="color:#a31515;">"userAccountControl"</span>][0]) & UF_EXPIRED))</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Password has expired. Please change your password before attempting to login again."<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">return</span><span style="color:#000000;"> </span>"Username and/or Password incorrect"<span style="color:#000000;">;</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p> <p color="#808080" style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; "></p><p color="#808080" style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; "></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080">///<span style="color: #008000"> </span><summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">///</span> Internal function to convert Large integer into its highpart and lowpart equivalents.</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>///<span style="color: #008000"> <</span>/summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>///<span style="color: #008000"> <</span>param name="largeInteger"><span style="color: #008000">Large integer object</span></param></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>///<span style="color: #008000"> <</span>returns></returns></p><p></p><p></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">private</span> <span style="color:#0000ff;">static</span> <span style="color:#0000ff;">long</span> LongFromLargeIntegerObject(<span style="color:#0000ff;">object</span> largeInteger)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> System.<span style="color:#2b91af;">Type</span> type = largeInteger.GetType();</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">int</span> highPart = (<span style="color:#0000ff;">int</span>)type.InvokeMember(<span style="color:#a31515;">"HighPart"</span>, <span style="color:#2b91af;">BindingFlags</span>.GetProperty, <span style="color:#0000ff;">null</span>, largeInteger, <span style="color:#0000ff;">null</span>);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">int</span> lowPart = (<span style="color:#0000ff;">int</span>)type.InvokeMember(<span style="color:#a31515;">"LowPart"</span>, <span style="color:#2b91af;">BindingFlags</span>.GetProperty, <span style="color:#0000ff;">null</span>, largeInteger, <span style="color:#0000ff;">null</span>);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">return</span> (<span style="color:#0000ff;">long</span>)highPart << style="color: #0000ff">uint)lowPart;</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"></p><p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080">///<span style="color: #008000"> </span><summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">///</span> Returns a collection of all users on the AD, for the given CN.</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span></summary></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">/// </span> <span style="color: #808080"><param name="ldap"</span><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Fully qualified LDAP url, alongwith the CN and OU.<span style="color: #808080"></param></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #008000"><span style="color: #000000"> </span><span style="color: #808080">/// </span> <span style="color: #808080"><param name="connectUser"</span><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Domain account having privileges to query to the LDAP.<span style="color: #808080"></param></span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><param name="connectPassword"<span style="color: #008000"><span class="Apple-style-span" style="color: rgb(128, 128, 128); ">></span>Password for the domain account.</span></param></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color: #808080"><span style="color: #000000"> </span>/// <span style="color: #008000"> </span><returns><span class="Apple-style-span" style="color:#009900;">SearchResultCollection</span></returns></p><p></p> <p color="#808080" style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; "><span style="color:#0000ff;">public</span> <span style="color:#0000ff;">static</span> <span style="color:#2b91af;">SearchResultCollection</span> DumpAllUsers(<span style="color:#0000ff;">string</span> ldap, <span style="color:#0000ff;">string</span> connectUser, <span style="color:#0000ff;">string</span> connectPassword)</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> {</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#2b91af;">DirectoryEntry</span> deSystem = <span style="color:#0000ff;">new</span> <span style="color:#2b91af;">DirectoryEntry</span>(ldap, connectUser, connectPassword);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#2b91af;"><span style="color:#000000;"> </span>DirectorySearcher<span style="color:#000000;"> s = </span><span style="color:#0000ff;">new</span><span style="color:#000000;"> </span>DirectorySearcher<span style="color:#000000;">(deSystem, </span><span style="color:#a31515;">"SAMAccountName=*"</span><span style="color:#000000;">,</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; color:#a31515;"><span style="color:#000000;"> </span><span style="color:#0000ff;">new</span><span style="color:#000000;"> </span><span style="color:#0000ff;">string</span><span style="color:#000000;">[] { </span>"cn"<span style="color:#000000;">, </span>"mail"<span style="color:#000000;">, </span>"samAccountName"<span style="color:#000000;">, </span>"userAccountControl"<span style="color:#000000;"> }</span></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> , <span style="color:#2b91af;">SearchScope</span>.Subtree);</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica; min-height: 12.0px"><br /></p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> <span style="color:#0000ff;">return</span> s.FindAll();</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica"> }</p> <p style="margin: 0.0px 0.0px 0.0px 0.0px; font: 10.0px Helvetica">}</p></div></div></div><div class="blogger-post-footer"><img width='1' height='1' src='https://blogger.googleusercontent.com/tracker/4880364674450768067-5704834874242447704?l=praveen-rangarajan.blogspot.com' alt='' /></div>Praveen Rangarajanhttp://www.blogger.com/profile/10501638623047223714noreply@blogger.com0