Windows Server 2016-domain Site replication query

After understanding the concept of Site replication, the following chapters we will be around the site replication related content on the daily replication of domain control, maintenance, and so on simple introduction. This chapter for everyone to bring about the domain control Site replication query related content, I hope you can like. The replication topology between domain controllers in the site is automatically generated by the KCC, and the intersite domain controller replication topology is automatically generated by ISTG. If the number of domain controllers is small and within one site, it is recommended that the replication topology be automatically managed by the KCC. If multi-site management, it is recommended that the site use a high-performance bridgehead server and other site links, or automatically generated by ISTG, the replication environment to minimize the domain administrator to participate in the manual, and ensure that the network links unblocked. Replication recommendations are managed through Active directory Sites and Services.

1. Query the site information in the domain: dsquery site

Information about the dsquery command-line help is as follows: c:\> dsquery /? Description:  The command set of the tool allows you to query the directory based on the specified criteria. In addition to  dsquery *    (dsquery *  can query any type of object), each of the following  dsquery  commands can find a specific object type: dsquery computer -  find the computers in the directory. dsquery contact -  find contacts in the directory. dsquery subnet -  find subnets in the directory. dsquery group -  find a group in the directory. dsquery ou -  Find the organizational unit in the directory. dsquery site -  find a site in the directory. dsquery server -  find  AD DC/LDS  instances in the directory. dsquery user -  find the user in the directory. dsquery quota -  find quota provisions in the directory. dsquery partition -  find the partitions in the directory. dsquery * -  uses a common  LDAP  query to find any object in the directory. To find help for a specific command, type   "dsquery <objecttype> /?", where <ObjectType>  is one of the supported object types shown above. dsquery site  finds sites in the directory that match the specified search criteria. If the predefined search conditions in the command are not sufficient, you can use the more general form of the query command  dsquery *. Syntax: dsquery site [-o {dn | rdn}] [-name name] [-desc description]& nbSp [{-s server| -d domain}] [-u username] [-p {password|*}] [-q] [-r ]&NBSP;[-GC]&NBSP;[-LIMIT&NBSP;NUMBEROFOBJECTS]&NBSP;[{-UC&NBSP;|&NBSP;-UCO&NBSP;|&NBSP;-UCI}] Parameter-o {dn &NBSP;|&NBSP;RDN} Specifies the display format for the list of entries found by the search. Value  dn  Displays the distinguished name of each entry. Value  rdn  Displays the relative distinguished name of each entry. -name name  searches for a site whose name attribute (the value of the cn  property) matches the  Name . For example, "na*" or "europe*". -desc description  searches for computers whose description properties match the  Description . For example, "corp*" or "*nch". {-s server| -d domain}  connect to the specified remote server or domain. By default, the computer is connected to a domain controller in the logon domain. -u username  Specifies the user name that the user uses to log on to the remote server. By default,,-u  uses the user name when the user logs on. You can specify a user name in any of the following formats: User name (for example,  linda) domain \ User name (for example,  widgets\linda) user principal name   (UPN) (for example,  [email  Protected])-p {password | *}  specify whether to log on to the remote server using a password or  * . If you type  *, you will be prompted to enter a password. The-q  cancels all output to the standard output (quiet mode). -r  Specifies that search will use recursion or tracking references during the search. By default, searches will not track references during a search. -gc  Specifies that the search uses the  Active Directory  global catalog. -limit numberofobjects  specifies that the given bar will be returned with theThe number of objects that match the pieces. If the value of  NumberOfObjects  is  0, all matching objects are returned. If this parameter is not specified, the front  100  bar results are displayed by default. {-uc | -uco | -uci}  Specifies to output or enter data in  Unicode  format. The following table lists and describes each of these formats. -uc  for from pipe   (|)   Input or output to pipe   (|)   Specify  Unicode  format. -uco  specify output in  Unicode  format to pipeline   (|)   or documents. -uci  specified in  Unicode  format from pipeline   (|)   or file input.

2. querying all domain controllers in the site: dsquery server–site < site name >

3. querying domain Controllers intersite topology Generator (ISTG) server information: Repadmin/istg

repadmin ISTG returns the computer name of the inter-Site Topology Generator (ISTG) server for the specified site. Syntax Repadmin/istg [DSA] [/verbose] parameter DSA specifies a directory server. For more information about the DSA parameters, see General parameters. /VERBOSE Lists the detailed information.

4. force synchronous replication of two domain controller information: repadmin/replicate domain A domain B dc=*,dc=com/force

ps c:\> repadmin /? Usage:  repadmin <cmd> <args> [/u:{domain\ USER}]&NBSP;[/PW:{PASSWORD|*}]&NBSP;[/RETRY[:&LT;RETRIES&GT;][:&LT;DELAY&GT;]]&NBSP;[/CSV] Use the following command to view the Help:/?  Displays a list of commands that can be used in  repadmin  and their descriptions. /help  is the same as  /? . /?:<cmd>  Displays the available parameters  <args>, appropriate syntax, and a list of examples for a specific command  <cmd> . /help:<cmd>  and  /?:<cmd>  The same/experthelp  displays a series of commands that are only available to advanced users. /listhelp  displays syntax variables that can be used for  dsa_name, Dsa_list, ncname , and  OBJ_LIST  strings. /oldhelp  displays a list of deprecated commands that are still valid, but  microsoft no longer supports them. Supported  <cmd>  commands (use  /?<cmd>  get detailed help):/kcc  force the  KCC  on the target domain controller Immediately recalculate its inbound replication topology. /prp  This command allows an administrator to view or modify the  RODC  password Replication policy. /queue  Display  DC  Inbound replication requests that you want to publish consistent with their source replication partners. /replicate  triggers the specified directory partition to be copied from the source  DC  to the destination domain controller immediately. /replsingleobj  copies a single object between any two domain controllers that have a common directory partition. The/replsummary replsummary  operation provides a quick and concise overview of the forest's replication status and relative health status. /rodcpwdrepl  triggers the password of the specified user from the source(hub &NBSP;DC) is copied to one or more read-only &NBSP;DC. /showattr  displays the properties of the object. /showobjmeta  displays replication metadata for the specified object stored in  Active Directory , such as attribute  id, version number, original and local update sequence number (USN), original server  guid and the date and time stamp. /showrepl  The replication status is displayed when the specified domain controller last attempted inbound replication  Active Directory  partitioning. /showutdvec  displays the highest update sequence number (USN) submitted, where the target  DC  copy of  Active Directory  is displayed for itself and for the submission of its transitive partners. /syncall  synchronizes the specified domain controller with all replication partners. Additional parameters supported:/u:  specifies the domain and user name  {domain\user} separated by a backslash, which has permission to perform actions in  Active Directory . Do not support  UPN  login. /pw:  Specifies the password for the user name that is entered by the  /u  parameter. /retry  when the first attempt to  repadmin  bind to target  DC  fails and returns the following error state information, this parameter can cause it to repeat its binding operation:  1722 /  0x6ba :  "rpc  Server Unavailable"  1753 / 0x6d9 :  "no more endpoints available in the endpoint mapper"/csv   with  /showrepl  uses output commas to separate the results of numeric formats.

5. Querying for replication information between domain controllers: Repadmin/showrepl

6. Synchronizing domain controller information: Repadmin/syncall

Force synchronization of domain controller information: Repadmin/syncall/force

Sync want domain controller information: repadmin/syncall/j

Repadmin syncall synchronizes the specified directory server with all replication partners. This command contains several sub-command syntax Repadmin/syncall DSA [NamingContext] [Flags] parameter DSA specifies a directory server. NamingContext the distinguished name of the specified directory partition. Flag to perform specific actions during the copy process, as shown below. Flag Description/A aborts if none of the servers are available. /A synchronizes all directory partitions in the directory server represented by DSA. /d determines the server by the distinguished name in the message instead of the GUID DNS. /e synchronizes directory partitions across all sites. (The default behavior is to synchronize only directory partitions in the same site as the directory server that the DSA represents.) )/h displays Help for Repadmin/syncall. /I repeats indefinitely. /I executes REPADMIN/SHOWREPL on each directory server pair in the path, and does not perform a synchronization operation. /j synchronizes only the neighboring directory servers. /p pauses after each message to give the user an opportunity to abort the operation. /P Out (push) changes from the directory server represented by DSA. (The default behavior of the command is to pull the change instead of the push.) /q to run in quiet mode; Cancel callback (callback) message. /q runs in very quiet mode; only fatal errors are reported. /s performs a topology analysis and generates messages, but does not synchronize directory partitions.

7. show the number and status of replication between domain controllers: Repadmin/replsum

This chapter is here to share, thanks for your support.

Windows Server 2016-domain Site replication query