Some commands for diagnostics on Windows Domain Controler
==== Diags Commands ====
Check - c:\windows\NTDS - ntds.dit / edb.xxx
c:\windows\SYSVOL\sysvol\domain.local --- subfolders
share - NETLOGON -> c:\windows\SYSVOL\sysvol\domain.local\SCRIPTS
share - SYSVOL -> c:\windows\SYSVOL\sysvol
Check - DNS console - SRV records - _msdcs.domain.local
= nslookup
nslookup gc._msdcs
= dcdiag /test: replications
dcdiag /test: topology, cutoffserver, netlogons, fsmocheck, DNS, frssysvol, frsevent, kccevent, systemlog, RegisterInDNS,
= repadmin /replsum
= repadmin /showrepl
== repadmin /replicate destDC courceDC NamingContext /force
= repadmin /showconn
= repadmin /showreps
= netdom query FSMO == netdom /verify DSTBDC /domain:domain.local
= netdom query DC
= nltest /DSGETDC:domain.local
= dnslint /ad /s localhost /v
= dnslint /d domain.local /s 10.x.x.x /v
explore
= dcdiag
= netdiag
= w32tm /config /syncfromflags:manual /manualpeerlist:10.x.x.x
= w32tm /config /update
= w32tm /dumpreg /subkey:parameters
= w32tm /monitor
-----Test------------ exchange "Service Principal Names" - LDAP --------------------
setspn -L "servername"
setspn -?
No comments:
Post a Comment