How to validate access to Active Directory?
Question
I am working on some sort of health monitoring and I want to validate that my application has access and proper right in Active Directory. When I initialise DirectoryEntry , this will show me that I see given domain/path from the machine. That's OK, but I need to check if I am able to read/write in the domain. It that even possible without creating actual object in AD?
Thanks in regards
1 answers
solution1
0 ACCPTED 2016-12-08 16:10:26
At last, it was quite easy with oldovets' comment. Here is the code I used:
using (DirectoryEntry entry = directorySearcher.FindOne()?.GetDirectoryEntry())
{
if (entry == null)
{
//report error
}
entry.RefreshCache(new string[] { "allowedAttributesEffective" });
if (entry.Properties["allowedAttributesEffective"].Value != null)
{
if (this.properties == null || this.properties.All(property => entry.Properties["allowedAttributesEffective"].Contains(property)))
{
//sufficient rights
}
else
{
//insufficient rights
}
}
else
{
//not possible to check attribute "allowedAttributesEffective", it is missing or you have insufficient rights to read it
}
}
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How to validate LDAP path against Active Directory
How to validate the user in Active Directory in C#
Validate a SearchResultCollection (active directory)
Validate Expired Password in active directory
How does application validate the authenticated token from Azure Active Directory?
How do I validate Active Directory creds over LDAP + SSL?
How to validate credentials from Active Directory in a UWP application
How to access a shared folder as an active directory user
How to enable a user to access vpn in active directory
How to access Active Directory and WMI
Related Tags