AD Command-line Flashcards
dsadd
Used to add new objects such as users, groups and ou’s
dsmod
Used to modify AD objects such as users, computers, groups, servers, OU’s and partitions. Can also be used to modify specific quotas or default quotas in partitions.
dsmove
Moves a single object, within a domain, from its current location in the directory to a new location, or renames a single object without moving it in the directory tree.
dsquery
Used to find objects based on a criteria that you specify. Can query users, groups, OU’s, servers, quota limits and partition objects
dsget
Allows you to display specified properties of an object
netdom
Ultimately used to manage trust relationships. Can be used to add/remove/test/rename and query computers in the domain. Can be used to move computers accounts from one domain to another. Can be used to verify trust relationships and secure channels.
ntdsutil
You can use the ntdsutil commands to perform database maintenance of AD DS, manage and control single master operations, and remove metadata left behind by domain controllers that were removed from the network without being properly uninstalled. Can be used to set the DSRM password
csvde
Imports and exports data from ActiveDirectory using files that store data in the comma-separated value (CSV) format. You can also support batch operations based on the CSV file format standard.
Ldifde
Creates, modifies, and deletes directory objects on computers running Windows Server2003 or WindowsXPProfessional operating systems.
redircmp
Redirects newly created computer accounts from the default Computers container to another OU
redirusr
Redirects newly created user accounts from the default users container to another OU
dsamain
Exposes Active Directory data that is stored in a snapshot or backup as a Lightweight Directory Access Protocol (LDAP) server.
