C#-web: Reading Users Of Active Directory

**Plater** · Feb 19 '08, 03:21 PM

Do a post process on your data, removing the IUSER accounts?
Offhand I don't know of any attributes, but you could look at them in windows and see if there is anything in common

**mikeyeli** · Feb 19 '08, 06:25 PM

Originally posted by dhanashivam

Hi All,

I am using the DirectorySearch er class for reading the active directory users. But the result shows the IUSR accounts also.

I dont want to take the IUSR accounts.

So please help me to take the usernames with out IUSR accounts from the active directory.

Is any attributes for remove those IUSR accounts?

Thanks in Advance.

Regards,
Dhanasekaran. G

you must specify what you want at the DIrectorySearch er filter
ex C#:

Code:

search.Filter = "(&(objectClass=user)(objectCategory=person))";

Here is an example:

Code:

public static ArrayList GetAllADDomainUsers(string domainpath)
{
        ArrayList allUsers = new ArrayList();
        DirectoryEntry searchRoot;
        
        searchRoot = new DirectoryEntry(domainpath);

        DirectorySearcher search = new DirectorySearcher(searchRoot);
        search.Filter = "(&(objectClass=user)(objectCategory=person))";
        search.PropertiesToLoad.Add("samaccountname");

        SearchResult result;
        SearchResultCollection resultCol = search.FindAll();			

        if (resultCol != null)
        {
                for(int counter=0; counter < resultCol.Count; counter++)
                {
                        result = resultCol[counter];
                        if (result.Properties.Contains("samaccountname"))
                        {
                                allUsers.Add((String)result.Properties["samaccountname"][0]);
                        }
                }
        }
        return allUsers;
}

**dhanashivam** · Feb 20 '08, 04:31 AM

Hi,

thanks for your reply. But still i am getting the following user accounts.

IWAM_DOMAINCS, IUSR_DOMAINCS,

my code is:

DirectorySearch er Searcher = new DirectorySearch er();
Searcher.Search Scope = SearchScope.Sub tree;
Searcher.Proper tiesToLoad.Add( "sAMAccountName ");
Searcher.Filter = "(&(objectClass =user)(objectCa tegory=person)) ";

DataTable dtUsers = new DataTable("User InAD");
dtUsers.Columns .Add("uname");
string str = "";
foreach (SearchResult AdObj in Searcher.FindAl l())
{
str += Convert.ToStrin g(AdObj.Propert ies["sAMAccountName "][0]) + "\n";
DataRow dr = dtUsers.NewRow( );
dr[0] = Convert.ToStrin g(AdObj.Propert ies["sAMAccountName "][0]);
dtUsers.Rows.Ad d(dr);
}

please help me.

thanks in advance.

Regards,
Dhanasekaran. G

**mikeyeli** · Feb 21 '08, 07:45 PM

Originally posted by dhanashivam

Hi,

thanks for your reply. But still i am getting the following user accounts.

IWAM_DOMAINCS, IUSR_DOMAINCS,

my code is:

DirectorySearch er Searcher = new DirectorySearch er();
Searcher.Search Scope = SearchScope.Sub tree;
Searcher.Proper tiesToLoad.Add( "sAMAccountName ");
Searcher.Filter = "(&(objectClass =user)(objectCa tegory=person)) ";

DataTable dtUsers = new DataTable("User InAD");
dtUsers.Columns .Add("uname");
string str = "";
foreach (SearchResult AdObj in Searcher.FindAl l())
{
str += Convert.ToStrin g(AdObj.Propert ies["sAMAccountName "][0]) + "\n";
DataRow dr = dtUsers.NewRow( );
dr[0] = Convert.ToStrin g(AdObj.Propert ies["sAMAccountName "][0]);
dtUsers.Rows.Ad d(dr);
}

please help me.

thanks in advance.

Regards,
Dhanasekaran. G

You're right, ive been searching, cant find a way to directly removing them on the filter, i think you should follow platers advice, do some post proccess to remove these accounts, although you have to think a way to make this efficient, since there can be a considerable amount of users. sorry i couldnt help

**Plater** · Feb 22 '08, 02:26 AM

I think there is a way to use SQL to query against active directory. (I saw it somewhere burried in msdn once i think)
That might be useful to throw in a "WHERE UserName NO like 'IUSER%' " or something.
Maybe you can do that with DirectorySearch er too though?

C#-web: Reading Users Of Active Directory

C#-web: Reading Users Of Active Directory

Comment

Comment

Comment

Comment

Comment