Search Active Directory Group by GUID using DirectorySearcher
Question
I'm using DirectorySearcher to find an AD security group by its (object) GUID.
Here's my code so far:
using (var container = new DirectoryEntry("LDAP://host:port/DC=X,DC=Y", User, Pass, AuthenticationType)
{
using (var searcher = new DirectorySearcher(container))
{
searcher.Filter = $"(objectguid=XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX)"
var result = searcher.FindOne();
}
}
Unfortunately the result always returns null, and I cannot change the DirectoryEntry 's path.
1 answers
solution1
0 2022-03-04 02:39:21
To make a query using objectGuid requires a special format that I don't quite remember right now, but it's complicated.
But there's a better way. You can bind directly to the object using the GUID, without searching, by using this format:
var result = new DirectoryEntry("LDAP://host:port/<GUID=XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXXXX>", User, Pass, AuthenticationType)
More information on that here: Using objectGUID to Bind to an Object
You can do the same with the SID as well: Binding to an Object Using a SID
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.