Reputation: 4009
Get an Extension Attribute from AD?
I got this from a member of our Network Team:
You can see that extensionAttribute2 has a value in it. How can I retrieve this value - I cannot see extensionAttributes anywere in UserPrincipal object - unless I am missing something.
I have went back a level further and tried the below:
UserPrincipal myUser = UserPrincipal.FindByIdentity(con, identityName);
DirectoryEntry de = (myUser.GetUnderlyingObject() as DirectoryEntry);
if (de != null)
{
// go for those attributes and do what you need to do
if (de.Properties.Contains("extensionAttribute2"))
{
return de.Properties["extensionAttribute2"][0].ToString();
}
else
{
return string.Empty;
}
}
However this does not work - debugging this there are about 40 properties available but none for extensionAttribute2
Upvotes: 4
Views: 12790
Answers (2)
Reputation: 506
Using the code that marc_s used add the following:
public static new UserPrincipalEx FindByIdentity(PrincipalContext context, string identityValue)
{
return (UserPrincipalEx)FindByIdentityWithType(context, typeof(UserPrincipalEx), identityValue);
}
// Implement the overloaded search method FindByIdentity.
public static new UserPrincipalEx FindByIdentity(PrincipalContext context, IdentityType identityType, string identityValue)
{
return (UserPrincipalEx)FindByIdentityWithType(context, typeof(UserPrincipalEx), identityType, identityValue);
}
Upvotes: 4
Reputation: 755157
If you're on .NET 3.5 and up and using the System.DirectoryServices.AccountManagement (S.DS.AM) namespace, you can easily extend the existing UserPrincipal class to get at more advanced properties, like Manager etc.
Read all about it here:
- Managing Directory Security Principals in the .NET Framework 3.5
- MSDN docs on System.DirectoryServices.AccountManagement
Basically, you just define a derived class based on UserPrincipal, and then you define your additional properties you want:
[DirectoryRdnPrefix("CN")]
[DirectoryObjectClass("Person")]
public class UserPrincipalEx : UserPrincipal
{
// Inplement the constructor using the base class constructor.
public UserPrincipalEx(PrincipalContext context) : base(context)
{ }
// Implement the constructor with initialization parameters.
public UserPrincipalEx(PrincipalContext context,
string samAccountName,
string password,
bool enabled) : base(context, samAccountName, password, enabled)
{}
// Create the "extensionAttribute2" property.
[DirectoryProperty("extensionAttribute2")]
public string ExtensionAttribute2
{
get
{
if (ExtensionGet("extensionAttribute2").Length != 1)
return string.Empty;
return (string)ExtensionGet("extensionAttribute2")[0];
}
set { ExtensionSet("extensionAttribute2", value); }
}
}
Now, you can use the "extended" version of the UserPrincipalEx in your code:
using (PrincipalContext ctx = new PrincipalContext(ContextType.Domain))
{
// Search the directory for the new object.
UserPrincipalEx inetPerson = UserPrincipalEx.FindByIdentity(ctx, IdentityType.SamAccountName, "someuser");
// you can easily access the ExtensionAttribute2 now
string department = inetPerson.ExtensionAttribute2;
}
Upvotes: 6
Related Questions
- Retrieve C# Attribute Data With Extension Method
- How to get Active Directory User Account Attributes in C#
- Get Active Directory ExtensionAttribute via UserPrincipal
- Retrieving complete information for the memberof (AD) attribute
- Using the extensionAttributes in Active Directory
- Active Directory C# Cannot Set Extension Attribute when deployed
- Extract extensionAttribute from Computer properties in Active Directory
- Retrieve Specific Active Directory Properties
- C# get obscure Active Directory Attributes
- Can I get Active Directory attributes from the WindowsPrincipal?