I'm working on an MVC 3 app in .NET, I don't have much experience with LDAP, but I wanted to be able to simply validate if a user exists. I don't need to validate the username and password combo as in this example:
LDAP Authentication in ASP.Net MVC
Although this is almost what I want to do. I just need to validate the username before he/she is added.
Is there a simple way to do this in .NET/MVC
Use the System.DirectoryServices.AccountManagement namespace and pass in the username or distinguished name (e.g. CN=John Doe) by altering the IdentityType enum.
public bool UserExists(string username)
{
PrincipalContext domain = new PrincipalContext(ContextType.Domain);
// locate the user
UserPrincipal user = UserPrincipal.FindByIdentity(domain, IdentityType.Name, username);
return user != null;
}
You can use LdapConnection and SearchRequest to achive that.
Example to get all users:
/// <summary>
/// Gets the LDAP users from the LDAP server.
/// </summary>
/// <param name="ldapServer">The LDAP server, string format: "LDAP://172.22.100.10:389/OU=AT,O=ON"</param>
/// <param name="directoryType">Type of the directory.</param>
/// <param name="user">The user.</param>
/// <param name="password">The password.</param>
/// <param name="domain">The domain (AD only).</param>
/// <returns>String list of LDAP users.</returns>
public List<string> GetLdapUsers(string ldapServer, LocalDirectoryType directoryType, string user, string password, string domain)
{
List<string> LdapUsers = new List<string>();
string serverName = Regex.Match(ldapServer, @"^.+//(.+?):").Groups[1].ToString();
string distinguishedName = ldapServer.Substring(ldapServer.LastIndexOf("/") + 1);
LdapConnection connection = new LdapConnection(new LdapDirectoryIdentifier(serverName));
switch (directoryType)
{
case LocalDirectoryType.ActiveDirectory:
connection.AuthType = AuthType.Ntlm;
break;
case LocalDirectoryType.eDirectory:
connection.AuthType = AuthType.Basic;
break;
}
// attempt to connect
try { connection.Bind(new NetworkCredential(user, password)); }
catch (Exception exception)
{
Trace.WriteLine(exception.ToString());
}
// run search for users
SearchResponse response = connection.SendRequest(new SearchRequest(distinguishedName, "(|(objectClass=person)(objectClass=user))", System.DirectoryServices.Protocols.SearchScope.Subtree, null)) as SearchResponse;
// extract users from results based on server type
if (directoryType == LocalDirectoryType.ActiveDirectory)
{
foreach (SearchResultEntry entry in response.Entries)
{
if (entry.Attributes.Contains("sAMAccountName") && entry.Attributes["sAMAccountName"][0].ToString() != String.Empty)
LdapUsers.Add(domain + "\\" + entry.Attributes["sAMAccountName"][0].ToString());
}
}
else
{
foreach (SearchResultEntry entry in response.Entries)
{
if (entry.Attributes.Contains("cn") && entry.Attributes["cn"][0].ToString() != String.Empty)
{
LdapUsers.Add("cn=" + entry.Attributes["cn"][0].ToString());
}
}
}
return LdapUsers;
}
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 乱世女痞 的文章《Validate User With LDAP/Network Credential in .NET》','https://www.manongdao.com/article-704308.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}