DNS Best Practices

Filters with PowerShell Active Directory

Find Server Objects Without NTDS Settings

Remote Windows PC Enumeration using PSTools


Listed below are all tools in the said tool kit:

  • PsExec – execute processes remotely
  • PsFile – shows files opened remotely
  • PsGetSid – display the SID of a computer or a user
  • PsInfo – list information about a system
  • PsPing – measure network performance
  • PsKill – kill processes by name or process ID
  • PsList – list detailed information about processes
  • PsLoggedOn – see who’s logged on locally and via resource sharing (full source is included)
  • PsLogList – dump event log records
  • PsPasswd – changes account passwords
  • PsService – view and control services
  • PsShutdown – shuts down and optionally reboots a computer
  • PsSuspend – suspends processes

AD FS Rapid Restore Tool

Audit account management

Enable Windows Integrated Authentication (IWA) for Mozilla, Chrome browsers in ADFS server.


1. Login to the server 200.200.200.2
2. Open powershell console as administrator
3. Check WIASupportedUserAgents which are available existing in ADFS server.
4. To add the different browsers, Run the below powershell command
(Set-AdfsProperties –WIASupportedUserAgents @(“MSAuthHost/1.0/In-Domain”,”MSIE 6.0″,”MSIE 7.0″,”MSIE 8.0″,”MSIE 9.0″,”MSIE 10.0″,”Trident/7.0″,”MSIPC”,”Windows Rights Management Client”,”Edge”,”Chrome”,”Firefox”)
4.Check whether WIASupportedUserAgents are available.
5. If it is not available post getting customer approval to stop the primiary ADFS server from NLB and restart ADFS service and check for User agents.

Phantoms, tombstones and the infrastructure master

AD technet portal


Wiki: Active Directory Domain Services (AD DS) Portal (Fantastic!)
http://social.technet.microsoft.com/wiki/contents/articles/13752.wiki-active-directory-domain-services-ad-ds-portal.aspx

AskDS / AskPFEPlat

The AskDS blog remains the most amazing place on the internet to find deep technical answers to all of your AD questions. Here are links to some of their best articles related to learning Active Directory. Each of these posts contain links to key Active Directory information that every admin should know.
http://blogs.technet.com/b/askds/archive/2010/07/27/post-graduate-ad-studies.aspx
http://blogs.technet.com/b/askds/archive/2009/01/30/seeing-the-domains-through-the-forest-what-you-need-to-know-to-build-your-career-in-directory-services-technologies.aspx
http://blogs.technet.com/b/askds/archive/2010/06/25/friday-mail-sack-1970-s-conversion-van-edition.aspx (scroll to bottom)
And here are two bonus posts that I couldn’t pass up.
http://blogs.technet.com/b/askds/archive/2011/12/08/effective-troubleshooting.aspx
http://blogs.technet.com/b/askds/archive/2011/09/02/accelerating-your-it-career.aspx

First, Do No Harm (DCPROMO checklist, highly recommended)
http://blogs.technet.com/b/askpfeplat/archive/2012/08/06/first-do-no-harm.aspx

TechNet Library

How Active Directory Replication Topology Works
http://technet.microsoft.com/en-us/library/cc755994(WS.10).aspx

How Operations Masters Work
http://technet.microsoft.com/en-us/library/cc780487(WS.10).aspx

How the Windows Time Service Works
http://technet.microsoft.com/en-us/library/cc773013(WS.10).aspx

How the Data Store Works
http://technet.microsoft.com/en-us/library/cc772829(WS.10).aspx

Active Directory Maximum Limits – Scalability
http://technet.microsoft.com/en-us/library/active-directory-maximum-limits-scalability(WS.10).aspx

How Domain and Forest Trusts Work
http://technet.microsoft.com/en-us/library/cc773178(v=WS.10).aspx

Capacity Planning for Active Directory Domain Services
http://social.technet.microsoft.com/wiki/contents/articles/14355.capacity-planning-for-active-directory-domain-services.aspx

Understanding FSMOs

Phantoms, tombstones and the infrastructure master
http://support.microsoft.com/kb/248047

FSMO placement and optimization on Active Directory domain controllers
http://support.microsoft.com/kb/223346

Windows 2000 Active Directory FSMO roles
http://support.microsoft.com/kb/197132

how to identify dirty drives


fsutil dirty query \\?\Volume{80d0e01f-154c-4053-b958-4aad7c1563ba}

fsutil dirty query y

https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/fsutil-dirty

chkntfs t

Mounted volume export command:

mountvol >> 1.txt

https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/mountvol

%d bloggers like this: