Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Get a user's group memberships from Active Directory

Tags:

.net

windows

active-directory

How can I about getting a user's group memberships from AD, preferably using the same pattern as I use to get the user's Department property, as below? I have found several examples, but the intersecting set of all example techniques is quite small, and lacks the tightness and simplicity of this Department query:

        var adServer = ConfigurationManager.AppSettings["adServer"] ?? "localhost";
        var remoteRoot = new DirectoryEntry(GetRootPath(adServer));
        var searcher = new DirectorySearcher(remoteRoot, string.Format("(SAMAccountName={0})", shortUserName));

        searcher.PropertiesToLoad.Add("Department");
        SearchResult result = null;
        result = searcher.FindOne();
like image 438
ProfK Avatar asked Dec 29 '09 10:12

ProfK

People also ask

How do I check my Active Directory group membership?

Go to “Active Directory Users and Computers”. Click on “Users” or the folder that contains the user account. Right click on the user account and click “Properties.” Click “Member of” tab.

How do I Export my ad user membership?

Run Netwrix Auditor → Navigate to "Reports" → Expand the "Active Directory" section → Go to "Active Directory - State-in-Time" → Select "User Accounts - Group Membership"→ Click 'View". To save the report, click the "Export" button → Choose a format from the dropdown menu → Click "Save".

How do you find the list of all groups a user is member of?

To get (sorted) plain list of groups only, you can run (New-Object System. DirectoryServices. DirectorySearcher("(&(objectCategory=User)(samAccountName=$($env:username)))")). FindOne().

1 Answers

Are you on .NET 3.5 ? If so, it's very easy:

PrincipalContext ctx = new PrincipalContext(ContextType.Domain, "YOURDOMAIN");

string userName = "yourUser";

UserPrincipal user = UserPrincipal.FindByIdentity(ctx, userName);

PrincipalSearchResult<Principal> results = user.GetAuthorizationGroups();

Find your user, and then call the .GetAuthorizationGroups() on your user principal - that returns all groups the user belongs to, including his primary group, and any nested group memberships.

Check out this MSDN article for more new goodness in .NET 3.5 when it comes to dealing with AD.

In .NET 2.0, things are a lot messier...

like image 53
marc_s Avatar answered Sep 28 '22 10:09

marc_s
Sign in to Comment

Related questions

Cursor becomes diagonal resize when form is above and left of the primary monitor
Jaro-Winkler Distance Algorithm in .NET [closed]
Is Ninject Good for Production Applications?
How do I read the PE header of a module loaded in memory?
How is dumpbin able to read the export table when it appears at a file offset larger than the file itself?
How do I retrieve DataColumn.DefaultValue from a Sql Table?
Document based database for .NET [closed]
How to import DSA signature in ASN.1 format using BouncyCastle (C#)
ObjectListView cast exception (for hit testing)
Asynchrony and .NET events?
How to use managed code from unmanaged code?
Strong examples of tech startups going (or staying) with .NET?
How do I delegate an AsyncCallback method for Control.BeginInvoke? (.NET)
Where to keep things like connectionstrings in an IoC pattern?
GroupPrincipal.Members.Remove() doesn't work with a large AD group
How to embed JQuery into custom server control
Windows Device Emulator V3, windows 7 + Network
Requested Execution Level for a dll
How to authenticate and keep track of users with WCF/JSON?
Naming a "core" Assembly

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!