程序员经验分享-hwhale

使用 C# 在 Active Directory 中的特定 OU 中创建用户

2024-01-18

非常感谢 marc_s 提供了我上一期中的以下代码示例在 Active Directory 中创建用户时出现 C# 错误 https://stackoverflow.com/questions/8684059/creating-user-in-active-directory-with-c-sharp-errors 

public static string ldapPath = "LDAP://OU=Domain Users,DC=contoso,DC=com";
public static string CreateUserAccount(string userName, string userPassword)
{
    // set up domain context
    PrincipalContext ctx = new PrincipalContext(ContextType.Domain, "contoso.com",ldapPath);

    // create a user principal object
    UserPrincipal user = new UserPrincipal(ctx, userName, userPassword, true);

    // assign some properties to the user principal
    user.GivenName = "User";
    user.Surname = "One";

    // force the user to change password at next logon
    user.ExpirePasswordNow();

    // save the user to the directory
    user.Save();

    return user.SamAccountName;
}

现在我正在尝试将用户帐户添加到特定的 OU 中。将 ldapPath 保留在 PrimaryContext 错误中

System.DirectoryServices.AccountManagement.PrincipalOperationException: Unknown error (0x80005000) ---> System.Runtime.InteropServices.COMException (0x80005000): Unknown error (0x80005000)
   at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
   at System.DirectoryServices.DirectoryEntry.Bind()
   at System.DirectoryServices.DirectoryEntry.get_SchemaEntry()
   at System.DirectoryServices.AccountManagement.ADStoreCtx.IsContainer(DirectoryEntry de)
   at System.DirectoryServices.AccountManagement.ADStoreCtx..ctor(DirectoryEntry ctxBase, Boolean ownCtxBase, String username, String password, ContextOptions options)
   at System.DirectoryServices.AccountManagement.PrincipalContext.CreateContextFromDirectoryEntry(DirectoryEntry entry)
   at System.DirectoryServices.AccountManagement.PrincipalContext.DoLDAPDirectoryInit()
   --- End of inner exception stack trace ---
   at System.DirectoryServices.AccountManagement.PrincipalContext.DoLDAPDirectoryInit()
   at System.DirectoryServices.AccountManagement.PrincipalContext.DoDomainInit()
   at System.DirectoryServices.AccountManagement.PrincipalContext.Initialize()
   at System.DirectoryServices.AccountManagement.PrincipalContext.ContextForType(Type t)
   at System.DirectoryServices.AccountManagement.Principal.GetStoreCtxToUse()
   at System.DirectoryServices.AccountManagement.Principal.set_SamAccountName(String value)
   at System.DirectoryServices.AccountManagement.UserPrincipal..ctor(PrincipalContext context, String samAccountName, String password, Boolean enabled)
   at ADINtegrationTest.ActiveDirectory.CreateUserAccount(String userName, String userPassword) in D:\_data\ADINtegrationTest\ADINtegrationTest\ActiveDirectoryUtils.cs:line 20
   at ADINtegrationTest.Form1.Form1_Load(Object sender, EventArgs e) in D:\_data\ADINtegrationTest\ADINtegrationTest\Form1.cs:line 32

如果我删除 ldapPath,它可以正常工作,但会将用户帐户放入用户 OU 中。我还尝试了 LDAP://contoso.com/OU=Domain Users,DC=contoso,DC=com 等 ldapPath,但不起作用。


我认为您的主要上下文构造函数的 LDAP 路径有点错误 - 如果您查看我给您的 MSDN 文章的链接,您会看到:

// create a context for a domain called Fabrikam pointed
// to the TechWriters OU and using default credentials
PrincipalContext domainContext = 
   new PrincipalContext(ContextType.Domain, "Fabrikam", "ou=TechWriters,dc=fabrikam,dc=com");

我也不确定你是否可以使用互联网风格的域名contoso.com- 尝试使用 NetBIOS 风格CONTOSO反而。所以对于你的情况,你应该尝试:

public static string ldapPath = "OU=Domain Users,DC=contoso,DC=com";

public static string CreateUserAccount(string userName, string userPassword)
{
     // set up domain context
     PrincipalContext ctx = 
         new PrincipalContext(ContextType.Domain, "CONTOSO", ldapPath);

    // create a user principal object
    .... (and the rest of your code as you had it)
}

那对你有用吗??

本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容,请联系:hwhale#tublm.com(使用前将#替换为@)

activedirectory

使用 C# 在 Active Directory 中的特定 OU 中创建用户 的相关文章

随机推荐

热门标签