Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Check if Active Directory Account is Locked out (WPF C#)

Tags:

c#

wpf

active-directory

Hello everyone (this is my first post) I have some simple AD code that i pulled from Codeplex http://www.codeproject.com/Articles/18102/Howto-Almost-Everything-In-Active-Directory-via-C) and i am able to get all of our end user's information from said code. Now, I have been searching and searching and have found some interesting code snippets from here, and around the web regarding "Is the user locked out?"

I would like to use my code that I have been using for 2 years now, and just add a little bit more to it to add in the locked out part... I would be happy if there was a text box that gave me my info, or a check box, or something that just said "user locked" and then I would notify my Exchange team and have the user unlocked...

The code that I have is the following:

string eid = this.tbEID.Text;
string user = this.tbUserName.Text.ToString();
string path = "PP://dc=ds,dc=SorryCantTellYou,dc=com";

DirectoryEntry de = new DirectoryEntry(path);

DirectorySearcher ds = new DirectorySearcher(de);
ds.Filter = "(&(objectCategory=person)(sAMAccountName=" + eid + "))";

SearchResultCollection src = ds.FindAll();

//AD results
if (src.Count > 0)
{
   if (src[0].Properties.Contains("displayName"))
   {
      this.tbUserName.Text = src[0].Properties["displayName"][0].ToString();
   }
}

So, if I can figure out how to use the same directory entry, and searcher to show me the account lockout status that would be amazing.. please assist

like image 277
user1762132 Avatar asked Oct 20 '12 20:10

user1762132

1 Answers

If you're on .NET 3.5 and up, you should check out the System.DirectoryServices.AccountManagement (S.DS.AM) namespace. Read all about it here:

  • Managing Directory Security Principals in the .NET Framework 3.5
  • MSDN docs on System.DirectoryServices.AccountManagement

Basically, you can define a domain context and easily find users and/or groups in AD:

// set up domain context
PrincipalContext ctx = new PrincipalContext(ContextType.Domain);

// find a user
UserPrincipal user = UserPrincipal.FindByIdentity(ctx, "SamAccountName");

if(user != null)
{
    string displayName = user.DisplayName;

    if(user.IsAccountLockedOut())
    {       
        // do something here....    

    }
}

The new S.DS.AM makes it really easy to play around with users and groups in AD!

like image 108
marc_s Avatar answered Oct 15 '22 22:10

marc_s
Sign in to Comment

Related questions

Deploying Postgresql Along Windows Application
How can I unit test a lock statement?
Calling a generic method with the correct derived type
Understand linq syntax [closed]
Is it bad to return new ICommand every time in property getter?
Error message "Operator '.' cannot be applied to operand of type 'lambda expression'" when converting a method to Extension Method?
Include header only once at the top of a rolling file
Generic of type T where T has a specific attribute
.net File.Copy very slow when copying many small files (not over network)
Moving ListViewItems Up & Down
Root Element Missing when deserializing an XML response using XmlSerializer
Convert Deserialization method to Async
How to concatenate two exceptions?
How to create RTF from plain text (or string) in C#?
Draw only outer border for TableLayoutPanel Cells
set src property in view to a url outside of the MVC3 project
programmatically excel cells to be auto fit width & height
MVC .NET Create Drop Down List from Model Collection in Strongly Typed view
XML writer and Memory Stream c#
How to read Excel XML (C#)

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!