ActiveDirectoryMembershipUser Class

asp.net.ph

System.Web.Security Namespace

.NET Framework version 2.0

Exposes and updates membership user information stored in an Active Directory data store.

Show Inherited Members

Visibility	Constructor	Parameters
public	ActiveDirectoryMembershipUser	( String providerName , String name , Object providerUserKey , String email , String passwordQuestion , String comment , Boolean isApproved , Boolean isLockedOut , DateTime creationDate , DateTime lastLoginDate , DateTime lastActivityDate , DateTime lastPasswordChangedDate , DateTime lastLockoutDate )

Visibility	Name	Value Type	Accessibility
public	Comment	String	[ Get , Set ]
public	Email	String	[ Get , Set ]
public	IsApproved	Boolean	[ Get , Set ]
public	LastActivityDate	DateTime	[ Get , Set ]
public	LastLoginDate	DateTime	[ Get , Set ]
public	ProviderUserKey	Object	[ Get ]

The ActiveDirectoryMembershipUser object is used to represent a single membership user in the Active Directory membership data store. It exposes information about the membership user such as the e-mail address, and provides functionality for the membership user such as the ability to change or reset his or her password.

An ActiveDirectoryMembershipUser object is returned by the application's membership provider whenever the application is configured to use an Active Directory data store. In an application that can be configured to use different data stores, or in an application that uses multiple data stores, you can refer to the base class, MembershipUser. Because the ActiveDirectoryMembershipUser object does not implement the LastActivityDate and LastLoginDate properties, you must be prepared to handle the NotSupportedException that is thrown when these members are accessed on an ActiveDirectoryMembershipUser object.

The ActiveDirectoryMembershipUser class implements internal optimizations used by the ActiveDirectoryMembershipProvider class to minimize the number of attribute updates that occur when calling the UpdateUser method. It also serializes the SecurityIdentifier representation ( available in the ProviderUserKey property ) so that an ActiveDirectoryMembershipUser object can be serialized and deserialized without throwing exceptions.

A ActiveDirectoryMembershipUser object is returned by the GetUser and CreateUser methods or as part of a MembershipUserCollection returned by the GetAllUsers, FindUsersByName, and FindUsersByEmail methods.

An ActiveDirectoryMembershipUser object is required by the UpdateUser method when you want to update the information for an existing membership user.

ActiveDirectoryMembershipUser properties are mapped to Active Directory attributes. The following table lists the ActiveDirectoryMembershipUser properties and their default attribute mappings.

Property	Default directory attribute	Can be mapped?
ProviderUserKey	securityIdentifier	No
Username	userPrincipalName	Yes, but must be either userPrincipalName or sAMAccountName
Comment	comment	No
CreationDate	whenCreated	No
Email	mail	Yes, but must be a single-valued attribute of type Unicode String.
LastActivityDate	n/a	Not supported by ActiveDirectoryMembershipProvider.
LastLoginDate	n/a	Not supported by ActiveDirectoryMembershipProvider.
LastPasswordChangedDate	pwdLastSet	No
PasswordQuestion	none, but must be mapped to an attribute if using question-and-answer security for password reset or retrieval.	Yes, but must be a single-valued attribute of type Unicode String.
IsApproved	User-Account-Control ( AD ) mDS-UserAccountDisabled ( ADAM )	No
IsLockedOut	computed from lockoutTime and the AD lockout duration ( AD on Windows 2000 ) msDS-User-Account-Control-Computed ( AD on Windows Server 2003 ) msDS-User-Account-Control-Computed ( ADAM )	No
LastLockoutDate	If locked out due to too many bad password attempts, the lockout time attribute is returned. If locked out due to too many bad password answer attempts, the value stored in the attribute defined by attributeMapFailedPasswordAnswerLockoutTime is returned. If locked out due to both a bad password and too many bad password attempts, the most recent date/time value is returned. If the account is not locked out, return 1/1/1753 for SQL compatibility.	No

The following code example demonstrates using properties on the ActiveDirectoryMembershipUser object on a Web page that may return user information from multiple membership data stores. Because the ActiveDirectoryMembershipUser object that underlies the MembershipUser object returned by the membership provider does not implement the LastActivityDate and LastLoginDate properties, the code first checks the type of the user object returned from the membership provider before displaying the contents of those properties.

<script language = "C#" runat = "server">
   protected void Page_Load ( object src, EventArgs e ) {
      MembershipUser user = Membership.GetUser ( );

      userName.Text = user.UserName;
      emailAddress.Text = user.Email;

      if ( user is ActiveDirectoryMembershipUser ) {
         lastLoginDate.Text = "Not available";
         lastActivityDate.Text = "Not available";
      } else {
         lastLoginDate.Text = user.LastLoginDate.ToShortDateString ( );
         lastActivityDate.Text = user.LastActivityDate.ToShortDateString ( );
      }

      System.Security.Principal.SecurityIdentifier sidValue =
         ( System.Security.Principal.SecurityIdentifier ) user.ProviderUserKey;
      sid.Text = sidValue.ToString ( );
   }
</script>

<html xmlns = "http://www.w3.org/1999/xhtml">
<head runat = "server">
   <title>User information</title>
</head>
<body>
   <form id = "form1" runat = "server">
      <div>
         <table>
            <tr>
               <td>User name:</td>
               <td><asp:Literal ID = "userName" runat = "server" /></td></tr>
            <tr>
               <td>E-mail Address:</td>
               <td><asp:Literal ID = "emailAddress" runat = "server" /></td></tr>
            <tr>
               <td>Last Login Date:</td>
               <td><asp:Literal ID = "lastLoginDate" runat = "server" /></td></tr>
            <tr>
               <td>Last Activity Date:</td>
               <td><asp:Literal ID = "lastActivityDate" runat = "server" /></td></tr>
            <tr>
               <td>Security Identifier SID:</td>
               <td><asp:Literal ID = "sid" runat = "server" /></td></tr>
         </table>
      </div>
   </form>
</body>
</html>

<script language = "VB" runat = "server">
   Protected Sub Page_Load ( ByVal src As Object, ByVal e As System.EventArgs )
      Dim user As MembershipUser = Membership.GetUser ( )

      userName.Text = user.UserName
      emailAddress.Text = user.Email

      If TypeOf ( user ) Is ActiveDirectoryMembershipUser Then
         lastLoginDate.Text = "Not available"
         lastActivityDate.Text = "Not available"
      Else
         lastLoginDate.Text = user.LastLoginDate.ToString ( )
         lastActivityDate.Text = user.LastActivityDate.ToString ( )
      End If

      Dim sidValue As System.Security.Principal.SecurityIdentifier = _
         CType ( user.ProviderUserKey, System.Security.Principal.SecurityIdentifier )
      sid.Text = sidValue.ToString ( )
   End Sub
</script>

<html xmlns = "http://www.w3.org/1999/xhtml">
<head runat = "server">
   <title>User information</title>
</head>
<body>
   <form id = "form1" runat = "server">
      <div>
         <table>
            <tr>
               <td>User name:</td>
               <td><asp:Literal ID = "userName" runat = "server" /></td></tr>
            <tr>
               <td>E-mail Address:</td>
               <td><asp:Literal ID = "emailAddress" runat = "server" /></td></tr>
            <tr>
               <td>Last Login Date:</td>
               <td><asp:Literal ID = "lastLoginDate" runat = "server" /></td></tr>
            <tr>
               <td>Last Activity Date:</td>
               <td><asp:Literal ID = "lastActivityDate" runat = "server" /></td></tr>
            <tr>
               <td>Security Identifier SID:</td>
               <td><asp:Literal ID = "sid" runat = "server" /></td></tr>
         </table>
      </div>
   </form>
</body>
</html>

C#

VB

ActiveDirectoryMembershipProvider Class

Suggested Reading

© 2000-2010 Rey Nuñez All rights reserved.

If you have any question, comment or suggestion
about this site, please send us a note

You can help support asp.net.ph