stackoom
  简体   繁体   中英

DirectoryEntry.Exist in C# taking more than 10 Sec time when AD/NT user is not present

 原文  2021-11-24 12:59:11       c#/ .net/ directoryentry

Question

Issue can also be triggered with the following simple application:

Stopwatch watch = new Stopwatch();
string[] userNames = {"JunkName", "DummyName"};

foreach (var name in userNames)
{
    watch.Reset();
    watch.Start();

    if (DirectoryEntry.Exists("WinNT://" + Environment.MachineName + "/" + name))
    {
        Console.WriteLine($"user {name} found in " + watch.ElapsedMilliseconds + "ms");
    }
    else
    {
        Console.WriteLine($"user {name} not found in " + watch.ElapsedMilliseconds + "ms");
    }
}

There is no proper root cause for this to tell is it Microsoft API issue or something else.

However most of the search results mention if you search for a user that does not exist, rather than return false, the DirectoryEntry.Exists method will throw an exception.

But in our sample application it is not throwing any exception.

Also I tried below few suggestions to check how much execution time these sample code takes and found these will also takes more than 11 seconds the first time.

Sample 1:

using (PrincipalContext pc = new PrincipalContext(ContextType.Machine))
{
    UserPrincipal up = UserPrincipal.FindByIdentity(pc,
                    IdentityType.SamAccountName, name);
 
    UserExists = (up != null);
}

Sample 2:

DirectoryEntry dirEntryLocalMachine =
    new DirectoryEntry("WinNT://" + Environment.MachineName + ",computer");
 
bool UserExists =
    dirEntryLocalMachine.Children.Find(userIdentity, "user") != null;

It's just a high level suspicion that OS updates would have caused the problem, may be my assumption is wrong.

Thanks in advance

1 answers

solution1
 0  2021-11-24 13:23:24

I encoutered the same latence one day, so I wrote this function that is much faster, maybe it can help you:

    private string FindUserSID(string domain, string user)
    {
        string output;

        try
        {
            NTAccount account = new NTAccount(domain + @"\" + user);
            SecurityIdentifier s = (SecurityIdentifier)account.Translate(typeof(SecurityIdentifier));
            output = s.ToString();
        }
        catch (IdentityNotMappedException)
        {
            output = null;
        }

        return output;
    }

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question C# enable user account with DirectoryEntry Parallel.Foreach taking more time than normal foreach in c# C# Excel Interop taking too long process when the row count is more than 3000 C# DirectoryEntry Error? How to check the Parent ID exist more than one time in the C# List Object Which is better PrincipalContext or DirectoryEntry for user creation in Active Directory C# More Time taking While retriving data from the ListView in c# SOQL query taking more time to execute from C# C# - Custom GroupBy taking more time for large dataset String between two strings that exist more than once C#
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM