AD Tools

dsastat repadmin /showrepl servername shows whether replication is working or not

repadmin /showconn servername shows the connection details of that server
repadmin /replicate destinationdc sourcedc domainnamingcontact replicates from sourcedc to
destinationdc
repadmin /syncall repadmin /syncall /A/e/P (A-allnamingcontact,e-intersite,P-replicationchanges) replicates between all
the servers in the
forest
repdmin /bridgeheads /verbose - to know which servers are bridgehead servers
ntdsutil Repadmin /kcc - Forces the Knowledge Consistency Checker (KCC) on targeted domain controllers to
immediately recalculate the inbound replication topology.
Repadmin /prp - Specifies the Password Replication Policy (PRP) for read-only domain controllers
(RODCs).
Repadmin /queue - Displays inbound replication requests that the domain controller must issue to
become
consistent with its source replication partners.
Repadmin /replicate - Triggers the immediate replication of the specified directory partition to a destination
domain controller from a source domain controller.
Repadmin /replsingleobj - Replicates a single object between any two domain controllers that have
common
directory partitions.
Repadmin /replsummary - Identifies domain controllers that are failing inbound replication or outbound
replication, and summarizes the results in a report.
Repadmin /rodcpwdrepl - Triggers replication of passwords for the specified users from the source
domain
controller to one or more read-only domain controllers. (The source domain
controller is typically a hub site domain controller.)
Repadmin /showattr - Displays the attributes of an object.
Repadmin /showobjmeta - Displays the replication metadata for a specified object that is stored in AD DS,
such
as attribute ID, version number, originating and local update sequence
numbers
(USNs), globally unique identifier (GUID) of the originating server, and
date and
time stamp.
Repadmin /showrepl - Displays the replication status when the specified domain controller last attempted
to
perform inbound replication on Active Directory partitions.
Repadmin /showutdvec - Displays the highest, committed USN that AD DS, on the targeted domain
controller,
shows as committed for itself and its transitive partners.
Repadmin /syncall - Synchronizes a specified domain controller with all replication partners.

OU Tools
net user /add name - to add user
net computer\\name /add - to add computer
redir username redir cmp dsadd ou= ,dc= ,dc= - to add ou
dsrm ou= ,dc= ,dc= - to remove ou
dsmove ou= ,dc= ,dc= -newparent ou= ,dc= ,dc= - to move one ou to other
dsmove cn= ,ou= ,dc= ,dc= -newparent cn= ,ou= ,dc= ,dc= - to move and rename a user from one ou to
other

GPO Tools
gptool - to check the total group policies in dc
gpresult - shows the entire group policy settings for a user
gpupdate - updates changes made in group policy
dcgpofix - to restore default default domain policy and default domain controller policy to the state that
exists immediately after a clean install
gpupdate /force - updates group policy by force
ntfrsutl ds - fixs the replication problems
replmon - to view active directory replication monitor we can check the replication errors
Dsquery server -isgc - to know the Global Catalog Servers

FSMO Roles
whoami /user - to know user information and SID of the user
dcdiag /domain:ridmanager - to run domain controller diagnostics
netdom query fsmo - to see all operational masters in DC

IP Tools
ipconfig- to check the ip address, subnet mask, default gateway address
ipconfig /? - for all available ip addresses
ipconfig /all - shows ip configuration like windows ip configuration, ethernet adapter, wifi, bluetooth
ipconfig /release ipconfig /renew ipconfig /displaydns ipconfig /flushdns - clears DNS Resolver cache
ipconfig /registerdns - we can register a fresh DNS Server
arp -a - to know MAC address of different DNS Server
arp -d - to clear arp cache
nbtstat -r - it shows any netbios names resolution
nbtstat -R - Purge & Preload NBT Remote cache name table
nbtstat -RR - it will refresh the registered netbios names
netstat -a - shows all ports
netstat -a -n - shows the ip address ports
APIPA (Automatic Private IP Address) - if DHCP sever goes down, APIPA allocates a IP address
tracert webname - to check whether the lines are passing through routes within time or not

pathping webname - it shows in detail

netdiag - it shows the entire information of the DC

DNS Tools
dnscmd /clear cache - to clear cache
nslookup - to check the current dnsserver
dnscmd servername /create directory partition FQDN - to custom directory partition(to replicate for only
some servers)
dnscmd servername /enlist directory partition FQDN - to replicate the data above created
dnscmd servername /unenlist directory partition FQDN - to disappear
dnscmd servername /delete directory partition FQDN - to remove from created server
DHCP Tools
netsh dhcp show server - shows no. of authorized dhcp servers
dhcploc - to identify rouge dhcp servers active on the subnet

Groups Tools
ldifde(LDAP data interchange format) dsadd group cn= ,ou= ,dc= ,dc= -scope - to add a group along with its scope

Certificate Tools
certutil.exe - to see the sanitized name
certutil.exe -v -ds - to see all of the CA related ADnames
certreq.exe - Requests Certificates from CA
kerberos tools:
kerbtray.exe:

Consoles
Domain.msc:

view all domains in the forest

manage
each of the domains in the forest,
trust relationships between domains,
configure the functional level for each domain or forest,
and configure the alternative user principal name (UPN) suffixes for a forest.
services.msc - to open services console
sysdm.cpl - to open System Properties
adsiedit.msc - to open ADSI Edit console
dssite.msc - to open AD Sites & Services
dsa.msc - to open AD Users & Computers
CMD - to open Command Prompt
NCPA.CPL - to open network settings

dnsmgmt.msc - to open DNS Management console

eventvwr - to open Event Viewer console
gpedit.msc - to open Group Policy Editor
gpmc.msc - to open Group Policy Management console
mmc.exe - to open Microsoft Management Coonsole
compmgmt.msc - to open Computer Management console
DCPROMO - to install AD
gpupdate - updates Group Policy
LUSRMGR.MSC - to open Local Users & Groups console
cmd-start netmon - to open Network Monitor console
certsrv.msc - to open Certificate Authority console
certmgr.msc - to open Certificate Management console

Ports
Protocol
TCP
TCP & UDP
TCP & UDP
TCP & UDP
UDP
TCP
UDP
UDP
TCP
TCP
&
UD
P
TCP
TCP
TCP
TCP
&
UD
P
UD
P
TCP
TCP
TCP
UD
P
TCP
&
UD
P
TCP

Port Number
25
53
88
464
123
135
137
138
139
389

Services
SMTP
DNS
Kerberos
Kerberos Password Change
Windows Time
RPC
NetLogon / NETBIOS Resolution
DFSN, NetLogon, NETBIOS Datagram Service
DFSN, NetLogon, NETBIOS Session Service
LDAP

636
3268
3269
445

LDAP SSL
LDAP GC
LDAP GC SSL (Secured Socket Layer)
SMB (Sever Message Block)

66/67

DHCP

5722
1723
465
1701

SYSVOL, FRS
PPTP (Point to Point Tunnel Protocol)
SMTP SSL
L2TP (Layer 2 Tunnel Protocol)

80

HTTP

443

HTTPS

&
UD
P
TCP
TCP
TCP
&
UD
P
UD
P
TCP
&
UD
P

20/21
23
22

FTP
Telnet
SSH(Secure Shell)

69

TFTP(Trival File Transfer Protocol)

3389

REMOTE DESKTOP