如何在VB.NET中通过AD DirectoryEntry设置AccountExpires
我需要在AD DirectoryEntry中设置accountExpires属性,但找不到简单的答案。 发现一些信息 看到一些关于****.dll的文章,但认为我不需要使用这种方法如何在VB.NET中通过AD DirectoryEntry设置AccountExpires,vb.net,active-directory,directoryentry,Vb.net,Active Directory,Directoryentry,我需要在AD DirectoryEntry中设置accountExpires属性,但找不到简单的答案。 发现一些信息 看到一些关于****.dll的文章,但认为我不需要使用这种方法 Dim valueToSet As Date = Now.AddDays(10) Dim ADSPath As String = "LDAP://cn=..." Dim de As DirectoryEntry = New DirectoryEntry(ADSPa
Dim valueToSet As Date = Now.AddDays(10)
Dim ADSPath As String = "LDAP://cn=..."
Dim de As DirectoryEntry = New DirectoryEntry(ADSPath)
Dim d As TimeSpan = valueToSet.ToUniversalTime - Date.Parse("01/01/1601")
Dim ValueToSetAsString As String = d.Ticks.ToString
' it appears that the ticks value is too large for the value of the directory entry
' converting to a string (18 chars or so) works!
de.Properties("accountexpires").Value = ValueToSetAsString
多亏了Brian,上面编写的大量代码看起来可以简化
de.Properties("accountexpires").Value = valueToSet.ToFileTime.ToString
在VB.NET中返回AccountExpires和其他大整数问题的函数
Function ConvertADValueToDateTime(ByVal li As Object) As DateTime
' http://bytes.com/topic/visual-basic-net/answers/512901-lastlogontimestamp
Try
Dim lngHigh = li.HighPart
Dim lngLow = li.LowPart
Dim lastLogon = (lngHigh * 2 ^ 32) - lngLow
Dim returnDateTime As DateTime = DateTime.FromFileTime(lastLogon)
Return returnDateTime
Catch ex As Exception
Return Nothing
End Try
End Function
示例用法:
Dim d As DateTime = ConvertADValueToDateTime(de.Properties("accountexpires").value)
If d = "01/01/1601" Then
' no expiry date
Return Nothing
Else
Return d
End If
另一种方法
类似的内容将使您的帐户在30天后过期:
Dim de As New DirectoryEntry("LDAP://cn=foo,cn=users,dc=contoso,dc=com")
de.Properties["accountExpires"].Value = DateTime.UtcNow.AddDays(30).ToFileTime()
de.CommitChanges()
这在表单上使用了DateTimePicker,但使用任何其他日期格式都应该很简单
Imports System.DirectoryServices
Imports System.DirectoryServices.ActiveDirectory
Imports System.IO
'Get the user
Dim EntryString As String
EntryString = "LDAP://...."
Dim dirEntry As DirectoryEntry
dirEntry = New DirectoryEntry(EntryString)
Dim dirSearcher As New DirectorySearcher(dirEntry)
dirSearcher.Filter = "(&(objectCategory=Person)(objectClass=user)(SAMAccountName=" & Trim(Form1.AccountNameTB.Text) & "))"
dirSearcher.SearchScope = SearchScope.Subtree
Dim searchResults As SearchResult = dirSearcher.FindOne()
'Set the date
Dim d1 As Date = Form1.AccountExpiresDTP.Value
Dim d2 As New DateTime(d1.Year, d1.Month, d1.Day)
d2 = d2.AddDays(1) 'Add one day so that it matches what is in AD
Dim ft As Long = d2.ToFileTime()
dirEntryResults.Properties("accountExpires").Value = ft.ToString 'You do need to turn it into a string
dirEntryResults.CommitChanges()
dirEntryResults.Close()
我不知道你可以在将来设置锁定。你不能-我出于某种原因插入了错误的属性。已修复。您可能希望使用.Today而不是.UtcNow,因此过期时间将在00:00小时。@NickFiles我无法使其正常工作(ComExpection:Unspecified error),但Chris坚持使用字符串值的回答有效。该值必须是字符串,不能太长。尝试以下操作:
DateTime.UtcNow.AddDays(30).ToFileTime().ToString()
(摘自Chris的答案)您不应该对值调用ToString。。。