How do I validate Active Directory creds over LDAP + SSL?

by

I was able to validate credentials using the System.DirectoryServices.Protocols namespace, thanks to a co-worker. Here’s the code:

// See http://support.microsoft.com/kb/218185 for full list of LDAP error codes
const int ldapErrorInvalidCredentials = 0x31;

const string server = "sd.example.com:636";
const string domain = "sd.example.com";

try
{
    using (var ldapConnection = new LdapConnection(server))
    {
        var networkCredential = new NetworkCredential(_username, _password, domain);
        ldapConnection.SessionOptions.SecureSocketLayer = true;
        ldapConnection.AuthType = AuthType.Negotiate;
        ldapConnection.Bind(networkCredential);
    }

    // If the bind succeeds, the credentials are valid
    return true;
}
catch (LdapException ldapException)
{
    // Invalid credentials throw an exception with a specific error code
    if (ldapException.ErrorCode.Equals(ldapErrorInvalidCredentials))
    {
        return false;
    }

    throw;
}

I’m not thrilled with using a try/catch block to control decisioning logic, but it’s what works. :/

More Related Contents:

  1. How to get all the AD groups for a particular user?
  2. Adding and removing users from Active Directory groups in .NET
  3. Error 0x80005000 and DirectoryServices
  4. How to get the current user’s Active Directory details in C#
  5. How can I get a list of users from active directory?
  6. Find Recursive Group Membership (Active Directory) using C#
  7. ASP.NET Core 2.0 LDAP Active Directory Authentication
  8. How to programmatically change Active Directory password
  9. Active Directory COM Exception – An operations error occurred (0x80072020)
  10. How to check if a user belongs to an AD group?
  11. Built-in helper to parse User.Identity.Name into Domain\Username
  12. .NET 4.5 Bug in UserPrincipal.FindByIdentity (System.DirectoryServices.AccountManagement)
  13. .Net’s Directory Services throws a strange exception
  14. Memory Leak when using DirectorySearcher.FindAll()
  15. Active Directory (LDAP) – Check account locked out / Password expired
  16. Connecting to LDAP from C# using DirectoryServices
  17. Why do we need boxing and unboxing in C#?
  18. Ignoring a class property in Entity Framework 4.1 Code First
  19. Is there a .NET/C# wrapper for SQLite? [closed]
  20. Best way to implement multi-language/globalization in large .NET project
  21. How to make a call to my WCF service asynchronous?
  22. Pass click event of child control to the parent control
  23. How to add parameters into a WebRequest?
  24. How to find the reason for a failed Build without any error or warning
  25. Explicitly freeing memory in c#
  26. How to consume a Scoped service from a Singleton?
  27. Operator overloading ==, !=, Equals
  28. BCL (Base Class Library) vs FCL (Framework Class Library)
  29. What is the best practice for using public fields?
  30. WebBrowser control and JavaScript errors

Leave a Comment