How to change login name of user in Active Directory

Monday, September 17, 2012 by Nate Bross

Someone asked on Stack Overflow:

I want to change in my .NET application login of user from Active Directory.

I’m changing it in this way now:

DirectoryEntry userToUpdate = updatedUser.GetDirectoryEntry();  
userToUpdate.Properties["sAMAccountName"].Value = user.NewLogin;  
userToUpdate.CommitChanges();

But it doesn’t work as I expect. When I’m checking in AD “Active Directory Users and Computers” entry for this user then on tab “account” I see that:
- “User logon name” property isn’t updated
- “User logon name (pre-Windows 2000)” property is correcly updated.

How to update correctly login name in AD from C# code? What property should I set in DirectoryEntry, or there is another method to change login name.

I posted the following answer, which was chosen as the accepted answer and received 7 upvotes:

There are two logon names in AD:

sAMAccountName    = User logon name, (pre-windows 2000) 
    Format/Usage: domain\user.name (note, your code will only populate user.name)

userPrincipalName = User logon name
    Format/Usage: user.name@domain.local

You need to update both.

Notable comments

Nate (0 upvotes): Correct, but when you login you must type domain\user (some apps put in the `domain` for you. I updated to make that clear.

Originally posted on Stack Overflow — 7 upvotes (accepted answer). Licensed under CC BY-SA.

signed letter b

Dad. Geek. Gamer. Software developer. Cloud user. Old Car enthusiast.  Blogger.

Top Posts

profile for Nate on Stack Exchange, a network of free, community-driven Q&A sites
a proud member of the blue team of 512KB club
Thoughts, opinions, and ideas shared here are my own. © 2026 Nate Bross.
RSS Feed