DirectorySearcherfilter

如果您只想查询，那么您应该在初始连接中绑定到该容器：

 // Next row is used to login to AD string ldapPath = "LDAP://OU=Ingegneria,DC=xxx,DC=xxx"; DirectoryEntry searchRoot = GetEntry(ldapPath, adminUser, adminPassword); // Here starts the query DirectorySearcher search = new DirectorySearcher(searchRoot) { SearchScope = SearchScope.Subtree, Filter = "(&" + "(objectClass=user)" + "(givenname=s*)" + "(samaccountname=*100)" + ")" }; search.PropertiesToLoad.Add("distinguishedname"); SearchResultCollection result = search.FindAll(); 

这样，您还可以大量减少AD中需要搜索的空间，从而加快搜索速度。

如果您使用的是.NET 3.5或更高版本，则可以使用PrincipalSearcher和“按示例查询”主体进行搜索：

 // create your domain context PrincipalContext ctx = new PrincipalContext(ContextType.Domain, "YOURDOMAIN", "OU=Ingegneria,DC=xxx,DC=xxx"); // define a "query-by-example" principal - here, we search for a UserPrincipal UserPrincipal qbeUser = new UserPrincipal(ctx); qbeUser.GivenName = "s*"; qbeUser.SamAccountName = "*100"; // create your principal searcher passing in the QBE principal PrincipalSearcher srch = new PrincipalSearcher(qbeUser); // find all matches foreach(var found in srch.FindAll()) { // do whatever here - "found" is of type "Principal" UserPrincipal userFound = found as UserPrincipal; if(userFound != null) { // do something with your user principal here.... } } 

如果您还没有 – 绝对阅读MSDN文章.NET Framework 3.5中的管理目录安全主体，它很好地展示了如何充分利用System.DirectoryServices.AccountManagement中的新function