如何使用C＃更好地查询Active Directory中的多个域？

我正在尝试将LDAP / AD搜索从仅在当前登录的域中搜索扩展到搜索AD中的所有域。 该方法接受带有查询的字符串，并返回并返回LDAPInformation对象。

虽然我在问，有没有更好的方法来搜索名称而不是这种方式？ 如果用姓氏寻找一个人需要使用通配符，这是用户不友好的（例如：Doe *）。

public static LDAPInformation[] GetGlobalAddressListVIAName(string nameQuery) { var currentForest = Forest.GetCurrentForest(); var globalCatalog = currentForest.FindGlobalCatalog(); using (var searcher = globalCatalog.GetDirectorySearcher()) { using (var entry = new DirectoryEntry(searcher.SearchRoot.Path)) { searcher.Filter = "(&(mailnickname=*)(objectClass=user)(displayName=" + nameQuery + "))"; searcher.PropertyNamesOnly = true; searcher.SearchScope = SearchScope.Subtree; searcher.Sort.Direction = SortDirection.Ascending; searcher.Sort.PropertyName = "displayName"; return searcher.FindAll().Cast().Select(result => new LDAPInformation(result.GetDirectoryEntry())).ToArray(); } } } 

这是对象：

  class LDAPInformation { internal LDAPInformation(DirectoryEntry entry) { //Section: HASH this.sAMAccountName = (string)entry.Properties["sAMAccountName"].Value; //Section: Email this.Mail = (string)entry.Properties["mail"].Value; //Section: Organziation this.Description = (string)entry.Properties["description"].Value; this.Company = (string)entry.Properties["company"].Value; this.Title = (string)entry.Properties["title"].Value; this.Department = (string)entry.Properties["department"].Value; //Section: Name this.DisplayName = (string)entry.Properties["displayName"].Value; this.FirstName = (string)entry.Properties["firstName"].Value; this.MiddleName = (string)entry.Properties["middleName"].Value; this.LastName = (string)entry.Properties["lastName"].Value; //Section: Address this.StreetAddress = (string)entry.Properties["streetAddress"].Value; this.City = (string)entry.Properties["city"].Value; this.State = (string)entry.Properties["state"].Value; this.PostalCode = (string)entry.Properties["postalCode"].Value; this.TelephoneNumber = (string)entry.Properties["telephoneNumber"].Value; } public string DisplayName { get; private set; } public string Mail { get; private set; } public string sAMAccountName { get; private set; } public string Description { get; private set; } public string Company { get; private set; } public string Title { get; private set; } public string Department { get; private set; } public string FirstName { get; private set; } public string MiddleName { get; private set; } public string LastName { get; private set; } public string StreetAddress { get; private set; } public string City { get; private set; } public string State { get; private set; } public string PostalCode { get; private set; } public string TelephoneNumber { get; private set; } } 

 DirectorySearcher directorySearcher; 

  using (DirectoryEntry directoryEntry = new DirectoryEntry(DirectoryConstants.RootDSE)) { // Create a Global Catalog Directory Service Searcher string strRootName = directoryEntry.Properties[DirectoryConstants.RootDomainNamingContext].Value.ToString(); using (DirectoryEntry usersBinding = new DirectoryEntry(DirectoryConstants.GlobalCatalogProtocol + strRootName)) { directorySearcher.SearchRoot = usersBinding; directorySearcher.ClientTimeout = timeout; directorySearcher.CacheResults = true; result = true; initialized = true; } } 

 public static string RootDSE { get { return @"GC://rootDSE"; } } public static string RootDomainNamingContext { get { return "rootDomainNamingContext"; } } public static string GlobalCatalogProtocol { get { return @"GC://"; } } 

• Google Play游戏实时多人游戏：获取参与者ID并将其存储到字符串中
• .Net如何将Nullables设置为Null

• C＃：如何在启用SSL的情况下连接到Active Directory？
• 以编程方式确定当前域控制器
• 从非域计算机连接到域SQL Server 2005
• 使用c＃删除活动目录中的用户
• 从可信域添加成员到AD组
• 如何在C＃Web应用程序中找到用户的Active Directory显示名称？
• PrincipalSearcher和DirectorySearcher之间的区别
• Active Directory服务：PrincipalContext – “容器”对象的DN是什么？
• 在.NET中创建Active Directory用户（C＃）