AD repadmin commands

Summarize the replication status and view overall health

repadmin /replsummary

Show replication partner and status

repadmin /showrepl

Show replication partner for a specific domain controller

repadmin /showrepl

Show only Replication Errors

repadmin /showrepl /errorsonly

Show replication Queue

Repadmin /Queue

How to Force Active Directory Replication

This will do a pull replication, which means it will pull updates from DC2 to DC1.

repadmin /syncall dc1 /AeD

If you want to push replication you will use the /P switch

repadmin /syncall dc1 /APeD

Find the last time your DC were backup

Repadmin /showbackup *

Displays calls that have not yet been answered

repadmin /showoutcalls *

List the Topology information

repadmin /bridgeheads * /verbose

Inter Site Topology Generator Report

repadmin /istg * /verbose

Active directory topics

Active Directory Forest Trust: Attention Points

https://social.technet.microsoft.com/wiki/contents/articles/50969.active-directory-forest-trust-attention-points.aspx

Sites Sites Everywhere basics for sites and services

https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/sites-sites-everywhere-8230/ba-p/399239

Configuring Change Notification on a MANUALLY created Replication partner

https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/configuring-change-notification-on-a-manually-created/ba-p/400188

Enable Change Notification On All Site Links

https://blog.expta.com/2009/03/how-to-enable-change-notification-on.html

The AD Recycle Bin: Understanding, Implementing, Best Practices, and Troubleshooting

https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/the-ad-recycle-bin-understanding-implementing-best-practices-and/ba-p/396944

Learning About Automatic Site Coverage

https://www.itprotoday.com/compute-engines/learning-about-automatic-site-coverage

Resetting a trust password on one side of the trust

https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/manage/ad-forest-recovery-reset-trust

Active Directory Replication Basics

Active Directory Replication

offline defragmentation of the AD database

 Online defragmentation does not reduce the size of the database file (Ntds.dit) but instead optimizes data storage in the database and reclaims space in the directory for new objects.

VS

Performing an offline defragmentation creates a new version of the database file without internal fragmentation. It also re-creates all indexes

https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/ad-database-offline-defragmentation

AD Supported Kerberos Encryption Types

https://techcommunity.microsoft.com/t5/core-infrastructure-and-security/decrypting-the-selection-of-supported-kerberos-encryption-types/ba-p/1628797

Group Policy Survival Guide

https://social.technet.microsoft.com/wiki/contents/articles/4715.group-policy-survival-guide.aspx

Install new Forest using PowerShell

Install-windowsfeature AD-domain-services

#
# Windows PowerShell script for AD DS Deployment
#

Import-Module ADDSDeployment
Install-ADDSForest `
-CreateDnsDelegation:$false `
-DatabasePath "C:\Windows\NTDS" `
-DomainMode "Win2008R2" `
-DomainName "abg.local" `
-DomainNetbiosName "ABG" `
-ForestMode "Win2008R2" `
-InstallDns:$true `
-LogPath "C:\Windows\NTDS" `
-NoRebootOnCompletion:$false `
-SysvolPath "C:\Windows\SYSVOL" `
-Force:$true

Install Additional Domain controller

#
# Windows PowerShell script for AD DS Deployment
#

Import-Module ADDSDeployment
Install-ADDSForest `
-CreateDnsDelegation:$false `
-DatabasePath "C:\Windows\NTDS" `
-DomainMode "Win2008R2" `
-DomainName "abg.local" `
-DomainNetbiosName "ABG" `
-ForestMode "Win2008R2" `
-InstallDns:$true `
-LogPath "C:\Windows\NTDS" `
-NoRebootOnCompletion:$false `
-SysvolPath "C:\Windows\SYSVOL" `
-Force:$true

Windows server 2016 Functional Level

New instance creation in Azure

First you create new resource group in Azure. Resource group name is AD-POC

Disk

Network