What you can do is keep a list of
Active Directory Users
that has already filled the form and every time a user fills the form or access the page (you decide) you can validate against the list you are holding, and allow/deny actions accordingly.
To get the user's identity, you can try:
Request.LogonUserIdentity.User
See more on LogonUserIdentity:
system.web.httprequest.logonuseridentity.aspx[
^]
Good luck,
Edo