Category Archives: dsquery

Group SID

Group SID Some time we require a SID for the group in active directory, using the simple inbuilt windows command we can get the group SID You can use the below command to find the group SID Group SID (Group to SID) Groupname: sales_executes(Pre-Win2k Name) Syntax: dsquery group -name “groupname” | dsget group -sid Example:… Read More »

User to SID

Some time we require a SID for the user account in active directory, using the simple inbuilt windows command we can get the User to SID You can use the below command to find the User to SID User to SID (Username to SID) Username: Johnson (Pre-Win2k Name) Syntax: dsquery user -name “username” | dsget… Read More »

How to extract the user who has the option Password never expires in the OU

To extract all the users in the OU with the Password never expires details, we can user Dsquery or CSVDE commands Use the blow command to find and export users with   Password never expires in Active Directory Dsquery command dsquery user “OU=Test,DC=test,DC=com” -limit 0 | dsget user -pwdneverexpires >c:tempUsers.txt dsquery user “OU=Test,DC=test,DC=com” –o rdn -limit… Read More »

Find distinguished name (LDAP path for the object)

If you are working with command-line tools to manage the active directory then you will require an LDAP path as an input for the commands (like dsget, dsmod), how to find the LDAP path? or LDAP DN To know more about LDAP and LDAP Query, like the difference between Distinguished Name (DN) and Relative Distinguished… Read More »

How to verify KCC disabled

How to verify KCC disabled, do you know ISTG is enabled or disabled for you active directory sites, you check the ISTG status using below command command Verify KCC status on intersite (by default KCC enabled) dsquery site -name Default-First-Site-Name | dsget site –autotopology autotopologynodsget succeeded Note: If automatic inter-site topology generation is enabled (yes)… Read More »

Command to find all DCs in the given site

Command to find all DCs in the given site Command to find all the Domain Controllers in the “Default-First-Site-Name” site dsquery server -o rdn -site Default-First-Site-Name Site name = Default-First-Site-Name