Tools You Can Use to Maintain Active Directory's Health - Page 2
Finally, you can use the Replication Diagnostic Tool to force replication between two servers. The syntax for doing so can be a little tricky; so, unless you need to build this ability into a batch file or you're just a command-line junky, you're usually better off forcing replication through another method, such as using the Active Directory Sites and Services console.
To understand the syntax for forcing replication, notice that when I ran the REPADMIN /SHOWREPS command, one of the returned pieces of information was the objectGuid. You'll need to know the objectGuid of the source server in order to force replication. Here's the syntax for forcing replication:
REPADMIN /SYNC <directory partition DN> <Destination server name> <source server objectGuid>
REPADMIN /SYNC DC=Posey,DC=COM Beavis 6d50c320-84f2-4197-bc98-5b51f9a93f9b
Active Directory Diagnostic Tool
Now that you're familiar with the functionality of the Replication Diagnostic Tool, let's look at another tool that you can use to keep your Active Directory healthy. The Active Directory Diagnostic Tool is a command-line utility that you can use to detect differences between naming contexts on domain controllers. You can use this tool to compare two replica's directory trees. You can either compare replicas within the same domain, or you can compare a replica within any domain to the global catalog.
The Active Directory Diagnostic Tool isn't quite as complicated to use as the Replication Diagnostic Tool. To use this tool, simply enter its executable file name (DSASTAT.EXE) followed by the arguments you want to use. You can view the full syntax by entering the command DSASTAT /?.
As you can see, using the Active Directory Diagnostic Tool is a great way to make sure that your Active Directory remains consistent across your entire enterprise. In Part 4, I'll introduce you to some other tools that you can use to keep your Active Directory healthy. //
Brien M. Posey is an MCSE who works as a freelance writer. His past experience includes working as the director of information systems for a national chain of health care facilities and as a network engineer for the Department of Defense. Because of the extremely high volume of e-mail that Brien receives, it's impossible for him to respond to every message, although he does read them all.