How to find the inactive users in a domain
To find all users in only the current domain, who have been inactive for 3 weeks or more, and display their DNs: dsquery user domainroot -name -inactive 3
Author Archives: mail2spi2014
How to extract the user who has the option Password never expires in the OU
To extract all the users in the OU with the Password never expires details, we can user Dsquery or CSVDE commands Use the blow command to find and export users with Password never expires in Active Directory Dsquery command dsquery user “OU=Test,DC=test,DC=com” -limit 0 | dsget user -pwdneverexpires >c:tempUsers.txt dsquery user “OU=Test,DC=test,DC=com” –o rdn -limit… Read More »
How to extract bulk object from AD with the specific attributes (Part 1)
Bulk reporting from AD (Part 1) Extracting the object information from AD is the frequent task for active directory administrators, most of the administrator’s uses script to do the task, but we can use the simple command to extract bulk object from AD If you want specific attribute details for all the users from TEST… Read More »
Find distinguished name (LDAP path for the object)
If you are working with command-line tools to manage the active directory then you will require an LDAP path as an input for the commands (like dsget, dsmod), how to find the LDAP path? or LDAP DN To know more about LDAP and LDAP Query, like the difference between Distinguished Name (DN) and Relative Distinguished… Read More »
How to verify KCC disabled
How to verify KCC disabled, do you know ISTG is enabled or disabled for you active directory sites, you check the ISTG status using below command command Verify KCC status on intersite (by default KCC enabled) dsquery site -name Default-First-Site-Name | dsget site –autotopology autotopologynodsget succeeded Note: If automatic inter-site topology generation is enabled (yes)… Read More »
Command to find the site name for given DC
Command to find the site name for given DC Command to find site name for the given domain controller dsquery server test01 -site domain controller name = test01
Command to find all DCs in the given site
Command to find all DCs in the given site Command to find all the Domain Controllers in the “Default-First-Site-Name” site dsquery server -o rdn -site Default-First-Site-Name Site name = Default-First-Site-Name
Command to find all the subnets for the given site
Command to find all the subnets for the given site Command to find all the subnet associated to the “Default-First-Site-Name” site in AD dsquery subnet -o rdn -site Default-First-Site-Name Site name = Default-First-Site-Name
Find the site name for given subnet in AD
Command to Find the site name for given subnet in AD, some time we know the IP and subnet and we have to find the site in active directory, you can use the below command dsquery subnet -name 192.168.1.0/24 | dsget subnet -site Subnet = 192.168.1.0/24 Please replece the above subnet with your subnet to… Read More »
DNS Query Types
There are 2 types of DNS query used in windows server/client to resolve the DNS entry, the output result can be diffrent for each query and the end system always uses Recursive query, you can test both the query using nslookup tool advance options [no]recurse DNS has two types of Query Iterative Query Recursive Query… Read More »
