| S.NO |
TOPICS |
VERSION |
EXPLAIN |
SOLUTION |
LINKS |
|
|
|
Displays calls that have not yet been answered |
repadmin /showoutcalls * |
use repadmin to check every DC in the forest |
|
|
|
List the Topology information |
repadmin /bridgeheads * /verbose |
REPADMIN /REPLSUM * /BYSRC /BYDEST /SORT:ERROR |
|
|
|
Inter Site Topology Generator
Report |
repadmin /istg * /verbose |
cmdkey /list |
|
|
|
Summarize the replication status and view overall health |
repadmin /replsummary |
|
|
|
|
Show replication partner and status |
repadmin /showrepl |
|
|
|
|
Show replication partner for a specific domain controller |
repadmin /showrepl
|
|
|
|
|
Show only Replication Errors |
repadmin /showrepl /errorsonly |
|
|
|
|
Show replication Queue |
Repadmin /Queue |
|
|
|
|
|
REPADMIN /showobjmeta |
|
|
|
|
displays the replication partners for each NC |
Repadmin /showrepl /repsto |
displays the replication partners for each naming context that is held on
the specified DC |
|
|
|
|
Repadmin /queue |
run against a particular DC determines if its replication queue has any
entries |
|
|
|
|
Repadmin /viewlist * |
|
|
|
|
How to Force Active Directory Replication |
repadmin /syncall dc1 /AeD |
This will do a pull replication,
which means it will pull updates from DC2 to DC1. |
|
|
|
Push replication CMD |
repadmin /syncall dc1 /APeD |
want to push replication use the /P switch |
|
|
|
|
repadmin /bind |
|
|
|
|
replication summary |
repadmin /replsum |
|
|
|
|
FSMO Roles |
netdom query fsmo |
|
|
|
|
List all DC in Forest |
netdom query dc, Repadmin
/viewlist * |
|
|
|
|
|
repadmin /showrepl * /csv
>showrepl.csv |
|
|
|
|
|
repadmin.exe /showrepl dc*
/verbose /all /intersite |
|
|
|
|
|
Get-NetworkStatistics | where
Localport -eq 8000 |
|
|
|
|
|
Get-NetTCPConnection -LocalPort
443 | Format-List |
|
|
|
|
View Port Use Along with Process Identifiers |
netstat -aon |
|
|
|
|
How to verify KCC disabled |
dsquery site -name Default-First-Site-Name | dsget site –autotopology |
|
|
|
|
Command to find the LDAP path
for group |
DSquery group –samid “Group Name” |
|
|
|
|
Command to find the LDAP path for OU |
Dsquery OU –name “OU Name” |
|
|
|
|
Command to find the LDAP path for user object |
Dsquery user –name “User Name” |
|
|
|
|
Command to find the LDAP path for subnet object |
dsquery subnet -name “Subnet” |
|
|
|
|
Command to find the LDAP path for the Site |
dsquery site -name “Site Name” |
|
|
|
|
Command to find duplicate service principal name in active directory |
csvde -f C:\Temp\spn.csv -d ” dc=domain,dc=in” -r
“(ServicePrincipalName=*computer_name*)” -l “cn” |
|
|
|
View Last Reboot Time |
net statistics server | more |
|
|
|
|
Remote Desktop into Console of specific computer |
Mstsc /v:computername /console |
|
|
|
|
Command to add members of one group to the other group (Group migration) |
dsget group “Source group DN” -members | dsmod group “Destination group
DN” -addmbr |
|
|
|
|
AD Replication failed with “Target principal name is incorrect” Event ID:
5722 |
netdom resetpwd /server:server_name
/userd:domain_nameadministrator /passwordd:administrator_password |
|
|
|
|
repadmin /options DC Name |
|
|
|
|
Sync replication with all of its replication partners |
repadmin /replicate destination_dsa Naming Context /allsources |
|
|
|
|
Sync the Active Directory replication between two DC |
repadmin /replicate destination_dsa source_dsa Naming Context /force |
|
|
|
|
Gpresult failed with ERROR Access Denied |
Regsvr32 /n /I c:winntsystem32userenv.dll |
|
|
|
|
Command to get the site name of the roaming profile serve |
Nltest /dsgetsite /server “roaming profile serve name” |
|
|
|
|
How to change the subnet mask of DHCP scope |
C:>netsh dhcp server \\”Server name” scope “scope subnet”
dump>c:dhcp.txt |
|
|
|
|
To check the current secure channel with a particular Domain |
nltest /sc_query:Domain Name |
|
|
|
|
|
netsh int ip reset
resetlog.txt, netsh winsock reset |
|
|
|
|
|
dfsutil cache referral, dfsutil
/PktInfo, dfsutil /spcflush, dfsutil /pktflush |
|
|
|
|
|
dfsdiag /testdfsintegrity /dfsroot:\\rakhesh.local\pub /full /recurse, |
|
|
|
|
Viewing the NetBIOS Name Cache |
nbtstat -c |
|
|
|
|
|
netdom trust /d:masterdom resourcedom |
|
|
|
|
The /dclist parameter is used to create a list of domain controllers of
the domain fourthcoffee.com |
nltest /dclist:fourthcoffee |
|
|
|
|
you want to find out detailed information about a certain user |
nltest /user:"TestAdmin" |
|
|
|
|
Verify trust relationship with a specific server |
nltest.exe /server:fourthcoffee-dc-01 /sc_query:fourthcoffee |
|
|
|
|
Determine the PDC emulator for a domain |
nltest /dcname:fourthcoffee |
|
|
|
|
Show trust relationships for a domain |
nltest /domain_trusts |
|
|
|
|
|
Repadmin /showutdvec DC1 dc=contoso,dc=com |
|
|
|
|
Secure channel may be broken,
Reset secure channel or Rejoin domain |
nltest /sc_reset: |
|
|
|
|
Trust password may be mismatched |
nltest /sc_change_pwd: |
|
|
|
|
To use Repadmin to remove lingering objects |
repadmin /removelingeringobjects ServerName ServerGUID
DirectoryPartition /advisory_mode |
|
|
|
|
event ID 1945 |
lingering object |
|
|
|
|
Lingering Object Liquidator
(LoL) |
repadmin /failcache |
|
|
|
|
Microsoft Active Directory
Topology Diagrammer |
|
|
|
|
|
|
qwinsta, fltmc |
|
|
|
|
|
rundll32.exe keymgr.dll, KRShowKeyMgr |
|
|
|
|
|
dnscmd /enumdirectorypartitions |
|
|
|
|
|
dcdiag.exe /TEST:RidManager /v | find /i “Available RID Pool for the
Domain” |
|
|
|
|
|
Managing RID Issuance in Windows
Server 2012 |
|
|
|
|
|
http://winintro.ru/wincmdref.en/index.html?page=html%2Ff9b822a1-8b8d-458b-9608-2fac0deddb9e.htm |
|
|
|
|
netstat -tabn, netstat -ban |
|
|
|
|
Remove credentials with |
Run psexec -i -s -d cmd, cmd /list, cmdkey /delete:target, |
|
|
|
|
ensure that the operations masters are functioning properly and available |
dcdiag /s: /test:fsmocheck |
|
|
|
|
ensure that the operations masters can be located |
dcdiag /s: /test:knowsofroleholders /v |
|
|
|
|
reset the Domain GPO |
dcgpofix /target:Domain |
|
|
|
|
reset the Default DC GPO |
dcgpofix /target:DC |
|
Comments
Post a Comment