Server – Effettuare il test di AD

Ecco alcuni modi e tool per effettuare i test di AD:
  1. Microsoft Active Directory Topology Diagrammer (ADTD)

Si installa “ADTD.Net Setup.msi” da qui . Installare ed eseguire “ADTD.exe”. Questo permette, una volta dato il dominio, di avere tutte le info.


Di seguito una breve panoramica:



Overview

With the Active Directory Topology Diagrammer tool, you can read your Active Directory structure through LDAP. The Active Directory Topology Diagrammer tool automates Microft Office Visio to draw a diagram of the Active Directory Domain topology, your Active Directory Site topology, your OU structure, your DFS-R topology or your current Exchange 20XX Server Organization. With the Active Directory Topology Diagrammer tool, you can also draw partial Information from your Active Directory, like only one Domain or one site. The objects are linked together, and arranged in a reasonable layout that you can later interactively work withthe objects in Microsoft Office Visio.Top of page

System requirements

Supported operating systems: Windows 2000 Server, Windows 7, Windows Server 2003, Windows Server 2003 R2 (32-Bit x86), Windows Server 2003 R2 x64 editions, Windows Server 2008, Windows Server 2008 R2, Windows Vista, Windows XP, Windows XP 64-bit
Microsoft .NET Framework Version 2.0
Microsoft Office Visio 2003 or newer


  1. 2008 Server AD e DNS Best Practice Analyzer

Il 2008 Server R2 include già di suo ili Best Practice Analyzer per AD e DNS:


Nel Server Manager > Roles > Active Directory Domain Services > Scroll down to find ‘Best Practices Analyzer’ and click ‘Scan This Role’


 

Il  DNS Server BPA is located in Server Manager > Roles > DNS Server > Scroll down to find ‘Best Practices Analyzer’ and click ‘Scan This Role’





  1. Tramite alcuni comandi CLI (notare che dando il pipe | si può mettere l’output su un file di testo)

Nota 1: Su server prima del 2008 va instalalto  Windows Server 2003 Administration Tools Pack (Adminpak) from here


Nota 2: Si può lanciare il seguente script presente in Active Directory Health Check script from thesysadmins

Find System Boot Time and Uptime:


systeminfo | find “System Boot Time:”


systeminfo | find “System Up Time:”

Analyze the state of domain controllers in a forest:
dcdiag /a

Provide an overview of any replication failures, and if last replication attempts were successful:
 

repadmin /replsummary

repadmin / showrepl

Returns the FSMO roles holders:
netdom query fsmo

  1. Verificare le porta aperte sul Firewall:

         Windows Firewall: Inbound ports - UDP/TCP 53, 88, 389, 464; UDP 123, 137; TCP 139, 445, 3268

Fig. Domain Controller Inbound ports

Server - File Replication Service Diagnostics Tool

Overview

FRSDiag provides a graphical interface to help troubleshoot and diagnose problems with the File Replication Service (FRS). FRS is used to replicate files and folders in the SYSVOL file share on domain controllers and files in Distributed File System (DFS) targets. FRSDiag helps to gather snap-shot information about the service, perform automated tests against that data, and compile an overview of possible problems that may exist in the environment.Top of page

System requirements

Supported operating systems: Windows 2000 Service Pack 3, Windows Server 2003

You can download and use FRSDiag.exe on any of the following platforms:
  • Windows 2000 Professional with Service Pack 3
  • Windows 2000 Server with Service Pack 3
  • Windows 2000 Advanced Server with Service Pack 3
  • Windows 2000 Datacenter Server with Service Pack 3
  • Windows XP Professional
  • Windows Server 2003, Web Edition
  • Windows Server 2003, Standard Edition
  • Windows Server 2003, Enterprise Edition
  • Windows Server 2003, Datacenter Edition

Additional Requirements:
  • .NET Framework version 1.1 or later if running Windows 2000 or Windows XP