AD sites and services

  • 1K Views
  • Last Post 15 July 2015
Greg.Whaley posted this 18 November 2005

In the AD Sites and Services I see servers in some sites that are not domain controllers. These servers do not have NTDS Settings object but the do have an MSMQ Settings. Are these servers supposed to show up in Sites and Services or should I do some clean up to get rid of them?

Greg Whaley
Consulting LAN Engineer
St. John Health
586-753-1594

show

Order By: Standard | Newest | Votes
listmail posted this 18 November 2005

I don't know about the MSMQ stuff but for example, the ADC service for
migrating 5.5 to E2K(3) will register server objects in the sites containers
and needs to be there.

I definitely wouldn't start deleting unless you know for sure what will be
impacted. I would recommend reviewing the machines that are showing up and
seeing if you can duplicate the registration and then see what doesn't work
if the registration goes missing with a test machine.

show

gkirkpatrick posted this 15 July 2015

http://blogs.msdn.com/b/adpowershell/archive/2009/08/18/active-directory-powershell-to-manage-sites-and-subnets-part-3-getting-site-and-subnets.aspx

 

3rd and 4th examples might be what you need. Haven’t tried them, but they look legit.

 

-gil

 

show

g4ugm posted this 15 July 2015

As far as I know, in general you can’t get a definitive list for a single site.  This site lists some PowerShell  scripts (not sure which version, server 2008 and onwards I think) http://blogs.msdn.com/b/adpowershell/archive/2009/08/18/active-directory-powershell-to-manage-sites-and-subnets-part-3-getting-site-and-subnets.aspx e.g. ##  Get all Subnets in a specified Active Directory site. $siteName =  "Default-First-Site-Name"$configNCDN = (Get-ADRootDSE).ConfigurationNamingContext$siteContainerDN = ("CN=Sites," + $configNCDN)$siteDN = "CN=" + $siteName + "," + $siteContainerDN$siteObj = Get-ADObject -Identity $siteDN -properties "siteObjectBL", "description", "location" foreach ($subnetDN in $siteObj.siteObjectBL) {    Get-ADObject -Identity $subnetDN -properties "siteObject", "description", "location" } That map to certain sites, BUT If you read this :- https://technet.microsoft.com/en-gb/magazine/2009.06.subnets.aspx you will see that:- “When overlapping IP subnets exist in Active Directory, the IP subnet with the smallest matching subnet mask is used. For example, 10.1.1.0/24 will be used instead of 10.0.0.0/8 if the computer has an IP address of 10.1.1.5/24 subnet. However, 10.1.1.1./32 will be used instead of 10.1.1.0/24 for a computer that has an IP address of 10.1.1.5.” So whilst you can get a list of subnets that specify and particular site by LDAP search, there may be IP addresses within those subnets that map elsewhere.  Dave Wade 

show

webster posted this 15 July 2015

You can look at the code in my AD script and see how I get that information.

 

http://carlwebster.com/downloads/download-info/active-directory-2/

 

Thanks

 

 

Webster

 

show

jeremyts posted this 15 July 2015

I use the following scripts to audit everything needed for customer reports. Without modification, they’ll audit all sites, site-links and subnets. You can

then extra the info you need. By targeting one site you may miss some obvious overlaps, etc.

·        

http://www.itadmintools.com/2011/08/list-sites-and-subnets-in-active.html

·        

http://blogs.technet.com/b/ashleymcglone/archive/2011/06/29/report-and-edit-ad-site-links-from-powershell-turbo-your-ad-replication.aspx

·        

https://gallery.technet.microsoft.com/scriptcenter/Auditing-Active-Directory-c47935c0

·        

http://blogs.metcorpconsulting.com/tech/?p=366

 

Cheers,

Jeremy

 

show

Close