从活动目录中检索OU's
本文关键字:OU 检索 活动 | 更新日期: 2023-09-27 18:07:21
我试图从活动目录中获取OU的列表。不幸的是,我的搜索总是没有任何结果,即使我知道有2 OU的"myApp"域组件内。
using (var entry = new DirectoryEntry("LDAP://myServer:1111/DC=myApp,DC=myDomain,DC=com", Username, Password)) {
using (var searcher = new DirectorySearcher()) {
searcher.SearchRoot = entry;
searcher.Filter = "(objectCategory=Organizational-Unit)";
searcher.PropertiesToLoad.Add("name");
//foo never gets results. :(
var foo = searcher.FindAll();
}
}
我试着在之前的StackOverflow问题中遵循代码,但是,没有运气。
我使用这样的东西。它检索所有的ou在字典名称与路径,只需更改SearchScope适当。
public Dictionary<string, string> GetOUInfo(SearchScope eSearchScope)
{
Dictionary<string, string> retValues = new Dictionary<string, string>();
try
{
DirectoryEntry oDirectoryEntry = new DirectoryEntry("LDAP://myServer:1111/DC=myApp,DC=myDomain,DC=com", Username, Password);
DirectorySearcher oDirectorySearcher = new DirectorySearcher(oDirectoryEntry,
"(objectCategory=organizationalUnit)", null, eSearchScope);
SearchResultCollection oSearchResultCollection = oDirectorySearcher.FindAll();
foreach (SearchResult item in oSearchResultCollection)
{
string name = item.Properties["name"][0].ToString();
string path = item.GetDirectoryEntry().Path;
retValues.Add(path, name);
}
}
catch (Exception ex)
{
}
return retValues;
}
1)您确定基础搜索"DC=myApp,DC=myDomain,DC=com"
吗?"myApp"
是域组件吗?
2)你能试着指定搜索范围吗?
searcher.SearchScope = SearchScope.Subtree;
3) "(objectCategory=Organizational-Unit)"
是Active-Directory可以理解的快捷方式,但实际上objectCategory属性是一个DN (distinguished name), OU的实际值为:CN=Organizational-Unit,CN=Schema,CN=Configuration,domain root DN
。
您是否可以尝试此过滤器"(objectClas=Organizational-Unit)"
,这是更常见的搜索OU?
在命令行中可以试试这个吗?
C:'temp>ldifde -f c:'temp'out.txt -d "DC=myApp,DC=myDomain,DC=com" -r "(objectClass=organizationalUnit)"
用这个就行了
PrincipalContext yourOU = new PrincipalContext(ContextType.Domain, "mycompany.com", "OU=Marketing,OU=Corporate,DC=mycompany,DC=com");
GroupPrincipal findAllGroups = new GroupPrincipal(yourOU, "*");
PrincipalSearcher ps = new PrincipalSearcher(findAllGroups);
foreach (var group in ps.FindAll())
{
Console.WriteLine(group.DistinguishedName);
}