Windows Active Directory

From Dave-Wiki
Revision as of 20:26, 19 July 2024 by Dave (talk | contribs)
Jump to navigation Jump to search

Client Commands

List Applied GPO's

rsop.msc (GUI version)

gpresult /r /scope computer (CLI version)

or save it to an html file with /h:

gpresult /h c:\gpresult.html

Confirm DC is Reachable

net view \\<source DC name>

Domain Controller Admin

Show DC GUID

 repadmin /showreps

Domain Controller Diagnostics

Verify DNS Services for DC

 dcdiag /test:dns

Comprehensive, Run all tests, Verbose

 dcdiag /c /v

Force registration of all DC-specific DNS records

 nltest.exe /dsregdns

Linux BIND DNS Servers with Dynamic Updates

Slave Config

Zone Declarations

 zone "_msdcs.lambnet.us" IN {
     type slave;
     masters { 10.144.30.4; };
     file "dynamic/_msdcs.lambnet.us";
     allow-update-forwarding { DOMAIN-CONTROLLERS; };
 };
 
 zone "_sites.lambnet.us" IN {
     type slave;
     masters { 10.144.30.4; };
     file "dynamic/_sites.lambnet.us";
     allow-update-forwarding { DOMAIN-CONTROLLERS; };
 };
 
 zone "_tcp.lambnet.us" IN {
     type slave;
     masters { 10.144.30.4; };
     file "dynamic/_tcp.lambnet.us";
     allow-update-forwarding { DOMAIN-CONTROLLERS; };
 };
 
 zone "_udp.lambnet.us" IN {
     type slave;
     masters { 10.144.30.4; };
     file "dynamic/_udp.lambnet.us";
     allow-update-forwarding { DOMAIN-CONTROLLERS; };
 };
Retrieved from "https://davehome.net/wiki/index.php?title=Windows_Active_Directory&oldid=262"