After understanding the concept of Site replication, the following chapters we will be around the site replication related content on the daily replication of domain control, maintenance, and so on simple introduction. This chapter for everyone to bring about the domain control Site replication query related content, I hope you can like. The replication topology between domain controllers in the site is automatically generated by the KCC, and the intersite domain controller replication topology is automatically generated by ISTG. If the number of domain controllers is small and within one site, it is recommended that the replication topology be automatically managed by the KCC. If multi-site management, it is recommended that the site use a high-performance bridgehead server and other site links, or automatically generated by ISTG, the replication environment to minimize the domain administrator to participate in the manual, and ensure that the network links unblocked. Replication recommendations are managed through Active directory Sites and Services.
1. Query the site information in the domain: dsquery site
Information about the dsquery command-line help is as follows: c:\> dsquery /? Description: The command set of the tool allows you to query the directory based on the specified criteria. In addition to dsquery * (dsquery * can query any type of object), each of the following dsquery commands can find a specific object type: dsquery computer - find the computers in the directory. dsquery contact - find contacts in the directory. dsquery subnet - find subnets in the directory. dsquery group - find a group in the directory. dsquery ou - Find the organizational unit in the directory. dsquery site - find a site in the directory. dsquery server - find AD DC/LDS instances in the directory. dsquery user - find the user in the directory. dsquery quota - find quota provisions in the directory. dsquery partition - find the partitions in the directory. dsquery * - uses a common LDAP query to find any object in the directory. To find help for a specific command, type "dsquery <objecttype> /?", where <ObjectType> is one of the supported object types shown above. dsquery site finds sites in the directory that match the specified search criteria. If the predefined search conditions in the command are not sufficient, you can use the more general form of the query command dsquery *. Syntax: dsquery site [-o {dn | rdn}] [-name name] [-desc description]& nbSp [{-s server| -d domain}] [-u username] [-p {password|*}] [-q] [-r ]&NBSP;[-GC]&NBSP;[-LIMIT&NBSP;NUMBEROFOBJECTS]&NBSP;[{-UC&NBSP;|&NBSP;-UCO&NBSP;|&NBSP;-UCI}] Parameter-o {dn &NBSP;|&NBSP;RDN} Specifies the display format for the list of entries found by the search. Value dn Displays the distinguished name of each entry. Value rdn Displays the relative distinguished name of each entry. -name name searches for a site whose name attribute (the value of the cn property) matches the Name . For example, "na*" or "europe*". -desc description searches for computers whose description properties match the Description . For example, "corp*" or "*nch". {-s server| -d domain} connect to the specified remote server or domain. By default, the computer is connected to a domain controller in the logon domain. -u username Specifies the user name that the user uses to log on to the remote server. By default,,-u uses the user name when the user logs on. You can specify a user name in any of the following formats: User name (for example, linda) domain \ User name (for example, widgets\linda) user principal name (UPN) (for example, [email Protected])-p {password | *} specify whether to log on to the remote server using a password or * . If you type *, you will be prompted to enter a password. The-q cancels all output to the standard output (quiet mode). -r Specifies that search will use recursion or tracking references during the search. By default, searches will not track references during a search. -gc Specifies that the search uses the Active Directory global catalog. -limit numberofobjects specifies that the given bar will be returned with theThe number of objects that match the pieces. If the value of NumberOfObjects is 0, all matching objects are returned. If this parameter is not specified, the front 100 bar results are displayed by default. {-uc | -uco | -uci} Specifies to output or enter data in Unicode format. The following table lists and describes each of these formats. -uc for from pipe (|) Input or output to pipe (|) Specify Unicode format. -uco specify output in Unicode format to pipeline (|) or documents. -uci specified in Unicode format from pipeline (|) or file input.
2. querying all domain controllers in the site: dsquery server–site < site name >
3. querying domain Controllers intersite topology Generator (ISTG) server information: Repadmin/istg
repadmin ISTG returns the computer name of the inter-Site Topology Generator (ISTG) server for the specified site. Syntax Repadmin/istg [DSA] [/verbose] parameter DSA specifies a directory server. For more information about the DSA parameters, see General parameters. /VERBOSE Lists the detailed information.
4. force synchronous replication of two domain controller information: repadmin/replicate domain A domain B dc=*,dc=com/force
ps c:\> repadmin /? Usage: repadmin <cmd> <args> [/u:{domain\ USER}]&NBSP;[/PW:{PASSWORD|*}]&NBSP;[/RETRY[:<RETRIES>][:<DELAY>]]&NBSP;[/CSV] Use the following command to view the Help:/? Displays a list of commands that can be used in repadmin and their descriptions. /help is the same as /? . /?:<cmd> Displays the available parameters <args>, appropriate syntax, and a list of examples for a specific command <cmd> . /help:<cmd> and /?:<cmd> The same/experthelp displays a series of commands that are only available to advanced users. /listhelp displays syntax variables that can be used for dsa_name, Dsa_list, ncname , and OBJ_LIST strings. /oldhelp displays a list of deprecated commands that are still valid, but microsoft no longer supports them. Supported <cmd> commands (use /?<cmd> get detailed help):/kcc force the KCC on the target domain controller Immediately recalculate its inbound replication topology. /prp This command allows an administrator to view or modify the RODC password Replication policy. /queue Display DC Inbound replication requests that you want to publish consistent with their source replication partners. /replicate triggers the specified directory partition to be copied from the source DC to the destination domain controller immediately. /replsingleobj copies a single object between any two domain controllers that have a common directory partition. The/replsummary replsummary operation provides a quick and concise overview of the forest's replication status and relative health status. /rodcpwdrepl triggers the password of the specified user from the source(hub &NBSP;DC) is copied to one or more read-only &NBSP;DC. /showattr displays the properties of the object. /showobjmeta displays replication metadata for the specified object stored in Active Directory , such as attribute id, version number, original and local update sequence number (USN), original server guid and the date and time stamp. /showrepl The replication status is displayed when the specified domain controller last attempted inbound replication Active Directory partitioning. /showutdvec displays the highest update sequence number (USN) submitted, where the target DC copy of Active Directory is displayed for itself and for the submission of its transitive partners. /syncall synchronizes the specified domain controller with all replication partners. Additional parameters supported:/u: specifies the domain and user name {domain\user} separated by a backslash, which has permission to perform actions in Active Directory . Do not support UPN login. /pw: Specifies the password for the user name that is entered by the /u parameter. /retry when the first attempt to repadmin bind to target DC fails and returns the following error state information, this parameter can cause it to repeat its binding operation: 1722 / 0x6ba : "rpc Server Unavailable" 1753 / 0x6d9 : "no more endpoints available in the endpoint mapper"/csv with /showrepl uses output commas to separate the results of numeric formats.
5. Querying for replication information between domain controllers: Repadmin/showrepl
6. Synchronizing domain controller information: Repadmin/syncall
Force synchronization of domain controller information: Repadmin/syncall/force
Sync want domain controller information: repadmin/syncall/j
Repadmin syncall synchronizes the specified directory server with all replication partners. This command contains several sub-command syntax Repadmin/syncall DSA [NamingContext] [Flags] parameter DSA specifies a directory server. NamingContext the distinguished name of the specified directory partition. Flag to perform specific actions during the copy process, as shown below. Flag Description/A aborts if none of the servers are available. /A synchronizes all directory partitions in the directory server represented by DSA. /d determines the server by the distinguished name in the message instead of the GUID DNS. /e synchronizes directory partitions across all sites. (The default behavior is to synchronize only directory partitions in the same site as the directory server that the DSA represents.) )/h displays Help for Repadmin/syncall. /I repeats indefinitely. /I executes REPADMIN/SHOWREPL on each directory server pair in the path, and does not perform a synchronization operation. /j synchronizes only the neighboring directory servers. /p pauses after each message to give the user an opportunity to abort the operation. /P Out (push) changes from the directory server represented by DSA. (The default behavior of the command is to pull the change instead of the push.) /q to run in quiet mode; Cancel callback (callback) message. /q runs in very quiet mode; only fatal errors are reported. /s performs a topology analysis and generates messages, but does not synchronize directory partitions.
7. show the number and status of replication between domain controllers: Repadmin/replsum
This chapter is here to share, thanks for your support.
Windows Server 2016-domain Site replication query