repadmin – cli tool for AD replication troubleshooting

Some examples:

  • repadmin /bind dc1 will test basic LDAP connectivity to the targeted server
  • repadmin /showrepl DC1 will show the replication status for DC1 domain controller and
  • repadmin /showrepl * > repl-status.csv will export the information in a nice csv file. Help available at repadmin /?
  • repadmin /showrepl * > csv | ConvertFrom-Csv | out-gridview – will show the result in a nice view, without the need for Excel or Calc.
  • repadmin /replicate dc2 dc1 “dc=root,dc=contosom,dc=com” will attempt to replicate from dc1 to dc2
  • repadmin /showobjmeta dc1 “cn=dc1,ou=domain controllers,dc=root,dc=contoso,dc=com” > dc1objectinfo.txt amd repadmin /showobjmeta dc2 “cn=dc1,ou=domain controllers,dc=root,dc=contoso,dc=com” > dc2objectinfo.txt will get you the replication meta information for a specificed object, stored in the AD. Its useful for troubleshooting some replication errors like -2146893022, 8614 amd 8606. It can show you if there is a difference in the *pwd* versions. If such exists, it will be useful to check the event viewer -> Windows Logs -> System -> Kerberos Error

Active Directory/ Windows environment troubleshooting toolbox

A small collection of useful programs, applications and mmc’s that can be of use, when your Active Directory isn’t cooperating and working as designed, or trying to find that small problem in the environment, that has been bothering you for quite some time.

Post in progress, regularly updated.

Continue reading “Active Directory/ Windows environment troubleshooting toolbox”