AD Active Directive CMD
nltest /server:savdaldc02.savilltech.com /dsregdns
| S.NO | TOPICS | VERSION | EXPLAIN | SOLUTION |
| Displays calls that have not yet been answered | repadmin /showoutcalls * | |||
| List the Topology information | repadmin /bridgeheads * /verbose | |||
| Inter Site Topology Generator Report | repadmin /istg * /verbose | |||
| Summarize the replication status and view overall health | repadmin /replsummary | |||
| Show replication partner and status | repadmin /showrepl | |||
| Show replication partner for a specific domain controller | repadmin /showrepl <ServerName> | |||
| Show only Replication Errors | repadmin /showrepl /errorsonly | |||
| Show replication Queue | Repadmin /Queue | |||
| REPADMIN /showobjmeta | ||||
| displays the replication partners for each NC | Repadmin /showrepl /repsto | |||
| Repadmin /queue | ||||
| Repadmin /viewlist * | ||||
| How to Force Active Directory Replication | repadmin /syncall dc1 /AeD | |||
| Push replication CMD | repadmin /syncall dc1 /APeD | |||
| repadmin /bind | ||||
| replication summary | repadmin /replsum | |||
| FSMO Roles | netdom query fsmo | |||
| List all DC in Forest | netdom query dc, Repadmin /viewlist * | |||
| repadmin /showrepl * /csv >showrepl.csv | ||||
| repadmin.exe /showrepl dc* /verbose /all /intersite | ||||
| Get-NetworkStatistics | where Localport -eq 8000 | ||||
| Get-NetTCPConnection -LocalPort 443 | Format-List | ||||
| View Port Use Along with Process Identifiers | netstat -aon | |||
| How to verify KCC disabled | dsquery site -name Default-First-Site-Name | dsget site –autotopology | |||
| Command to find the LDAP path for group | DSquery group –samid “Group Name” | |||
| Command to find the LDAP path for OU | Dsquery OU –name “OU Name” | |||
| Command to find the LDAP path for user object | Dsquery user –name “User Name” | |||
| Command to find the LDAP path for subnet object | dsquery subnet -name “Subnet” | |||
| Command to find the LDAP path for the Site | dsquery site -name “Site Name” | |||
| Command to find duplicate service principal name in active directory | csvde -f C:\Temp\spn.csv -d ” dc=domain,dc=in” -r “(ServicePrincipalName=*computer_name*)” -l “cn” | |||
| View Last Reboot Time | net statistics server | more | |||
| Remote Desktop into Console of specific computer | Mstsc /v:computername /console | |||
| Command to add members of one group to the other group (Group migration) | dsget group “Source group DN” -members | dsmod group “Destination group DN” -addmbr | |||
| AD Replication failed with “Target principal name is incorrect” Event ID: 5722 | netdom resetpwd /server:server_name /userd:domain_nameadministrator /passwordd:administrator_password | |||
| repadmin /options DC Name | ||||
| Sync replication with all of its replication partners | repadmin /replicate destination_dsa Naming Context /allsources | |||
| Sync the Active Directory replication between two DC | repadmin /replicate destination_dsa source_dsa Naming Context /force | |||
| Gpresult failed with ERROR Access Denied | Regsvr32 /n /I c:winntsystem32userenv.dll | |||
| Command to get the site name of the roaming profile serve | Nltest /dsgetsite /server “roaming profile serve name” | |||
| How to change the subnet mask of DHCP scope | C:>netsh dhcp server \\”Server name” scope “scope subnet” dump>c:dhcp.txt | |||
| To check the current secure channel with a particular Domain | nltest /sc_query:Domain Name | |||
| netsh int ip reset resetlog.txt, netsh winsock reset | ||||
| dfsutil cache referral, dfsutil /PktInfo, dfsutil /spcflush, dfsutil /pktflush | ||||
| dfsdiag /testdfsintegrity /dfsroot:\\rakhesh.local\pub /full /recurse, | ||||
| Viewing the NetBIOS Name Cache | nbtstat -c | |||
| netdom trust /d:masterdom resourcedom | ||||
| The /dclist parameter is used to create a list of domain controllers of the domain fourthcoffee.com | nltest /dclist:fourthcoffee | |||
| you want to find out detailed information about a certain user | nltest /user:”TestAdmin” | |||
| Verify trust relationship with a specific server | nltest.exe /server:fourthcoffee-dc-01 /sc_query:fourthcoffee | |||
| Determine the PDC emulator for a domain | nltest /dcname:fourthcoffee | |||
| Show trust relationships for a domain | nltest /domain_trusts | |||
| Repadmin /showutdvec DC1 dc=contoso,dc=com | ||||
| Secure channel may be broken, Reset secure channel or Rejoin domain | nltest /sc_reset: | |||
| Trust password may be mismatched | nltest /sc_change_pwd:<domainname> | |||
| To use Repadmin to remove lingering objects | repadmin /removelingeringobjects ServerName ServerGUID DirectoryPartition /advisory_moderepadmin /removelingeringobjects ServerName ServerGUID DirectoryPartition /advisory_mode | |||
| event ID 1945 | lingering object | |||
| Lingering Object Liquidator (LoL) | repadmin /failcache | |||
| Microsoft Active Directory Topology Diagrammer | ||||
| qwinsta, fltmc | ||||
| rundll32.exe keymgr.dll, KRShowKeyMgr | ||||
| dnscmd /enumdirectorypartitions | ||||
| dcdiag.exe /TEST:RidManager /v | find /i “Available RID Pool for the Domain” | ||||
| Managing RID Issuance in Windows Server 2012 | ||||
| http://winintro.ru/wincmdref.en/index.html?page=html%2Ff9b822a1-8b8d-458b-9608-2fac0deddb9e.htm | ||||
| netstat -tabn, netstat -ban | ||||
| Remove credentials with | Run psexec -i -s -d cmd, cmd /list, cmdkey /delete:target, | |||
| ensure that the operations masters are functioning properly and available | dcdiag /s:<DomainControllerName> /test:fsmocheck | |||
| ensure that the operations masters can be located | dcdiag /s:<DomainControllerName> /test:knowsofroleholders /v | |||
| reset the Domain GPO | dcgpofix /target:Domain | |||
| reset the Default DC GPO | dcgpofix /target:DC | |||
| Check the status of the shared SYSVOL | dcdiag /test:netlogons | |||
| Verify replication with other domain controllers | dcdiag /test:replications | |||
| repadmin /removelingeringobjects /advisory_mode | ||||
| repadmin /removelingeringobjects ServerName ServerGUID DirectoryPartition /advisory_mode | ||||
| To verify the availability of the operations masters | dcdiag /s:<DomainControllerName> /test:knowsofroleholders /v | |||
| ensure that the operations masters are functioning properly and available on the network | dcdiag /s:<DomainControllerName> /test:fsmocheck | |||
| nslookup -debug pugazh.co.in | ||||
| nslookup -type=soa pugazh.co.in |