2

我正在寻找一种方法来获取当前登录用户的完整 Active Direcory LDAP 路径。例如

LDAP://CN=john.smith,OU=UK,OU=Sales,DC=Company,DC=local
4

1 回答 1

3

使用此过滤器查询 LDAP 目录(例如 AD):

(&(objectCategory=user)(sAMAccountName=<user-logon-name-here>))

返回的对象的 DN 就是您要查找的内容。

像这样的东西:

DirectorySearcher ds = new DirectorySearcher();
string userName = WindowsIdentity.GetCurrent().Name;
string userFilter = "(&(objectCategory=user)(sAMAccountName={0}))";

ds.SearchScope = SearchScope.Subtree;
ds.PropertiesToLoad.Add("distinguishedName");
ds.PageSize = 1;
ds.ServerPageTimeLimit = TimeSpan.FromSeconds(2);
ds.Filter = string.Format(userFilter, userName);

SearchResult sr = ds.FindOne();
// now do something with sr.Properties["distinguishedName"][0]
于 2008-11-17T18:48:52.600 回答