Platform SDK: Active Directory, ADSI, and Directory Services

Enumerating Users on Member Servers and Windows 2000 Professional

On member servers and computers running Windows 2000 Professional, you can easily enumerate all the users in local security database.

To enumerate the users on a member server or computer running Windows 2000 Professional

  1. Bind to the computer using the following rules:
    1. Use an account that has sufficient rights to access that computer.
    2. Use the following binding string format using the WinNT provider, computer name, and an extra parameter to tell ADSI that it is binding to a computer:

      WinNT://sComputerName, computer

      where sComputerName is the name of the computer whose groups you want to access.

      In the binding string, the ",computer" parameter tells ADSI that it is binding to a computer and allows the WinNT: provider's parser to skip some ambiguity-resolution queries to determine what type of object you are binding to.

    3. Bind to the IADsContainer interface.
  2. Set a filter containing "user" using the IADsContainer::put_Filter method. This enables you to enumerate the container and retrieve only users.
  3. Enumerate the user objects, using the IADsContainer::get__NewEnum method.
  4. For each user object, use the IADs or IADsUser methods to read the properties of the user.
Built on Tuesday, February 08, 2000