-
Notifications
You must be signed in to change notification settings - Fork 0
/
ADCache.cs
145 lines (131 loc) · 5.62 KB
/
ADCache.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
using System;
using System.Collections.Generic;
using System.DirectoryServices;
namespace OIMNTFS_Service
{
public class ADCache
{
private EventLog eventLog;
public struct Properties
{
public Properties(string sid, SearchResult entry)
{
samAccountName = entry.Properties["samAccountName"][0].ToString();
canonicalName = entry.Properties["canonicalName"][0].ToString();
SID = sid;
distinguishedName = entry.Properties["distinguishedName"][0].ToString();
path = entry.Path;
objectClass = entry.Properties["objectClass"][entry.Properties["objectClass"].Count - 1].ToString();
switch (samAccountName)
{
case "Administrators":
objectClass = "system";
break;
case "SPT_Search_filer":
objectClass = "system";
break;
case "SPP_Search_Filer":
objectClass = "system";
break;
case "GF-RD021-DA":
objectClass = "system";
break;
default:
if (samAccountName.StartsWith("SPT_Search"))
objectClass = "system";
else if (samAccountName.StartsWith("SPP_Search"))
objectClass = "system";
else if (samAccountName.StartsWith("SPP_Search"))
objectClass = "system";
else if (samAccountName.StartsWith("Domain "))
objectClass = "system";
break;
}
}
public string samAccountName { get; set; }
public string objectClass { get; set; }
public string canonicalName { get; set; }
public string SID { get; set; }
public string path { get; set; }
public string distinguishedName { get; set; }
}
static Dictionary<string, Properties> cache = new Dictionary<string, Properties>(200000);
public ADCache(string path)
{
eventLog = new EventLog("OIMNTFS ADCache");
eventLog.Buffer("Reading directory information.");
try
{
DateTime start = DateTime.Now;
string[] properties = new string[] { "samAccountName", "objectClass", "canonicalName", "objectSID", "distinguishedName" };
string filter = "(|(objectClass=user)(objectClass=group))";
eventLog.Buffer("Connecting to {0}...", path);
DirectoryEntry directoryEntry = null;
try
{
//directoryEntry = new DirectoryEntry(path);
directoryEntry = new DirectoryEntry();
directoryEntry.RefreshCache(properties);
}
catch
{
eventLog.Buffer("Current user context is not allowed to read from AD.");
}
Console.WriteLine("Reading all ad user and group objects...");
DirectorySearcher ds = new System.DirectoryServices.DirectorySearcher(directoryEntry, filter, properties);
ds.SearchScope = SearchScope.Subtree;
ds.CacheResults = true;
ds.ClientTimeout = TimeSpan.FromMinutes(120);
ds.PageSize = 100;
SearchResultCollection entries = ds.FindAll();
foreach (SearchResult entry in entries)
{
System.Security.Principal.SecurityIdentifier binSID = new System.Security.Principal.SecurityIdentifier((byte[])entry.Properties["objectSID"][0], 0);
string sid = binSID.ToString();
string samAccountName = entry.Properties["samAccountName"][0].ToString();
if (!cache.ContainsKey(sid))
cache.Add(sid, new Properties(sid, entry));
}
eventLog.Buffer("{0} objects found. Loading AD took actually {1}", cache.Count, (DateTime.Now - start).ToString());
}
catch (Exception e)
{
eventLog.Buffer("Reading AD failed: {0}", e.Message);
//throw new Exception("Reading AD failed.");
}
eventLog.Flush();
}
public int Count()
{
return cache.Count;
}
public bool isADObject(string samAccountName)
{
return cache.ContainsKey(samAccountName);
}
public string getObjectClass(string SID)
{
Properties properties;
if (cache.TryGetValue(SID, out properties))
return properties.objectClass;
else
return "deleted";
}
public string getObjectName(string SID)
{
Properties properties;
if (cache.TryGetValue(SID, out properties))
return properties.samAccountName;
else
return SID;
}
public Properties getProperties(string objectName)
{
Properties properties;
if (cache.TryGetValue(objectName, out properties))
return properties;
else
return new Properties();
}
}
}