Active Directory HealthCheck11 Replies Active Directory Health CheckNote : The following commands and script are to be run from a domain controller with enterprise / domain admin privileges. You may run the individual commands one by one or run the script. The script will run all the commands listed and generate a report 1. Replsummary operation quickly and concisely summarizes the replication state and relative health of a forest.repadmin /replsummary

2. Synchronizes a specified domain controller with all replication partners, and reports if the sync was successful or notrepadmin /syncall /erepadmin /syncall /ApedA ( All partitions ) P ( Push ) E( Enterprise ) D ( Distinguished Name )

3. Forces the KCC on targeted domain controller(s) to immediately recalculate its inbound replication topologyrepadmin /kcc *

4. Find the last time your DCs were backed up, by reading the DSASignature attribute from all serversRepadmin /showbackup *

5. Output all replication summary information from all DCsRepadmin /showrepl *

6. Displays inbound replication requests that the domain controller has to issue to become consistent with its source replication partners.Repadmin / queue *

7. List all the Domain Controllers in Active DirectoryDSQUERY Server -o rdn

8. Identifies domain controllers that are failing inbound replication or outbound replication, and summarizes the results in a report.Repadmin /replsummary

9. Displays calls that have not yet been answered, made by the specified server to other serversrepadmin /showoutcalls *

10. List the Topology information of all the bridgehead serversrepadmin /bridgeheads * /verbose

11. Inter Site Topology Generator Reportrepadmin /istg * /verbose

12. Displays a list of failed replication events detected by the Knowledge Consistency Checker (KCC).repadmin /failcache *

13. Lists all domains trusted by a specified domainRepadmin /showtrust *

14. Displays the replication features for, a directory partition on a domain controller.repadmin /bind *

15. Dcdiag analyzes the state of domain controllers in a forest or enterprise and reports any problems to help in troubleshootingdcdiag /c /e /v16. AD Health Check ScriptThis script will run all the commands mentioned in this document and generate an output/log fileThis script will work under the following conditions DSQUERY.exe is present in C:\Windows\System32 Repadmin.exe is present in C:\Windows\System32 Dcdiag.exe is present in C:\Windows\System32(In case of Windows Server 2003 Dcdiag and Repadmin are not installed by default, Administrator has to install Support tools for Windows Server 2003 for the script to work)Windows Server 2003 Sp1 Support toolshttp://www.microsoft.com/en-us/download/details.aspx?id=7911Windows Server 2003 Sp2 Support toolshttp://www.microsoft.com/en-us/download/details.aspx?id=15326 Read and Write permissions present on C: Drive, this is required as the report is written to the root of the C drive. Administrator can change the script to flush the output to a different drive The script should be run under the Enterprise admin / Domain Admin Login ADHealth.bat > AD Health Check Script Script (Mirror) ADHealth.docis a sample output/log that is generated by the script============================================================================How to Query Active Directory Objectshttp://pdtechguru.wordpress.com/2012/10/15/how-to-query-active-directory-objects-3/Active Directory Health Checkhttp://pdtechguru.wordpress.com/2012/10/04/active-directory-health-check/Large Mailbox Itemshttp://pdtechguru.wordpress.com/2012/10/02/large-mailbox-items/Find Mail Box Size using PowerShellhttp://pdtechguru.wordpress.com/2012/09/28/find-mail-box-size-using-powershell/Google Chrome Home Page Group Policyhttp://pdtechguru.wordpress.com/2012/09/25/google-chrome-group-policy/How to hide users from GALhttp://pdtechguru.wordpress.com/2012/10/26/how-to-hide-users-from-gal/Search for Room Mailboxhttp://pdtechguru.wordpress.com/2012/10/26/search-for-room-mailbox/How to Create a Distribution & Security Group using Exchange Management Shellhttp://pdtechguru.wordpress.com/2012/10/25/how-to-create-a-distribution-security-group-using-Exchange-management-shell-2/Find Distribution Group Managed By and SMTP Addresshttp://pdtechguru.wordpress.com/2012/10/23/find-distribution-group-managed-by-and-smtp-address/How to Find Duplicate Proxy Addresshttp://pdtechguru.wordpress.com/2012/10/30/how-to-find-duplicate-proxy-address/