java獲取windows Active Directory資訊
阿新 • • 發佈:2019-01-22
通過java原生態的api就可以獲取到windows AD資訊,想要了解windows Active Directory是個什麼東東,自己可以查閱相關資料,一般來說windows系統安裝完後可能不會自帶AD檢視器,我們需要通過下載軟體進行update,下載地址:https://www.technipages.com/windows-install-active-directory-users-and-computers,安裝完AD我們可以通過AD檢視器檢視到如下資訊,我們還可以通過一些工具比如LDAPSoft Ldap Browse檢視AD資訊:
上圖就是我的windows電腦所顯示的AD資訊,我的是win10系統,上面顯示的屬性中我們可以通過java api獲取到
得到LdapContext資訊,要獲取到LdapContext資訊,我們需要提供開通389埠的ldap協議的電腦ip、domain、使用者名稱及密碼資訊,否則獲取會報錯:
public class LdapContextFactory { private static LdapContext ldapContext; public static LdapContext getLdapContext(String url, String domain, String username, String password) { if (ldapContext == null) { try { Hashtable<String, String> environment = getActiveDirectoryEnvironment(url, domain, username, password); ldapContext = new InitialLdapContext(environment, null); } catch (NamingException e) { e.printStackTrace(); } } return ldapContext; } private static Hashtable<String, String> getActiveDirectoryEnvironment(String url, String domain, String username, String password) { Hashtable<String, String> environment = new Hashtable<>(); environment.put("java.naming.factory.initial", "com.sun.jndi.ldap.LdapCtxFactory"); environment.put("java.naming.security.authentication", "simple"); environment.put("java.naming.provider.url", url); environment.put("java.naming.security.principal", username + "@" + domain); environment.put("java.naming.security.credentials", password); return environment; } }
獲取所有屬性資訊
獲取定製屬性資訊:public static void getAllAttribute(LdapContext ldapContext){ try { System.out.println("validate success :" + ldapContext); Name name = new LdapName("dc=centmfademo,dc=com"); Attributes allAttrs = ldapContext.getAttributes(name); if (null == allAttrs) { System.out.println("no attributes"); return; } for (NamingEnumeration<?> attrs = allAttrs.getAll(); attrs.hasMore();) { Attribute attr = (Attribute) attrs.next(); System.out.println("attr : " + attr.getID()); for (NamingEnumeration<?> values = attr.getAll(); values.hasMore();) { System.out.println("\tvalue : " + values.next()); } } System.out.println("-------------------------------------------"); } catch (AuthenticationException e) { e.printStackTrace(); } catch (NamingException e) { e.printStackTrace(); System.out.println("validate faliure :" + e); } finally { try { ldapContext.close(); } catch (NamingException e) { e.printStackTrace(); } } }
public static void getSpecialAttribute(LdapContext ldapContext){
try{
SearchControls searchControls = new SearchControls();
searchControls.setSearchScope(SearchControls.SUBTREE_SCOPE);
String returnedAtts[] = {"memberOf","dSCorePropagationData"};//定製返回屬性
/*String returnedAtts[] = { "url", "whenChanged", "employeeID", "name", "userPrincipalName",
"physicalDeliveryOfficeName", "departmentNumber", "telephoneNumber", "homePhone", "mobile",
"department", "sAMAccountName", "whenChanged", "mail" }; // 定製返回屬性
*/ searchControls.setReturningAttributes(returnedAtts); // 設定返回屬性集
String searchBase = "DC=centmfademo,DC=com"; //Specify the Base for the search//搜尋域節點
//(&(objectClass=user))
//(&(objectClass=user)(sAMAccountName=dev001))
//(&(objectClass=user)(sAMAccountName=dev001)(givenName=dev))
String searchFilter = "objectClass=User"; //specify the LDAP search filter
//String searchFilter = "objectClass=organizationalUnit";//specify the LDAP search filter
NamingEnumeration<SearchResult> searchResults = ldapContext.search(searchBase, searchFilter,searchControls);
while(searchResults.hasMoreElements()){
SearchResult searchResult = searchResults.next();
System.out.println(searchResult.getName());
Attributes allAttrs = searchResult.getAttributes();
//System.out.println(allAttrs.get("mail"));
if (null == allAttrs) {
System.out.println("no attributes");
return;
}
for (NamingEnumeration<?> attrs = allAttrs.getAll(); attrs.hasMore();) {
Attribute attr = (Attribute) attrs.next();
System.out.println("attr : " + attr.getID());
//System.out.println("attr get : " + attr.get().toString());
for (NamingEnumeration<?> values = attr.getAll(); values.hasMore();) {
System.out.println("\tvalue : " + values.next());
}
/*Enumeration<?> values = attr.getAll();
if(values != null){
while(values.hasMoreElements()){
System.out.println(" AttributeValues=" + values.nextElement());
}
}*/
}
}
} catch (AuthenticationException e) {
e.printStackTrace();
} catch (NamingException e) {
e.printStackTrace();
System.out.println("validate faliure :" + e);
} finally {
try {
ldapContext.close();
} catch (NamingException e) {
e.printStackTrace();
}
}
}
編寫我們的測試類進行測試
public static void main(String[] args) {
String url = "ldap://127.0.0.1:389";// 19.201.
String domain = "testademo.com";
String username = "administrator"; // 使用者名稱稱
String password = "testhello"; // 密碼
LdapContext ldapContext = LdapContextFactory.getLdapContext(url, domain, username, password);
getAllAttribute(ldapContext);
getSpecialAttribute(ldapContext);
}