Repadmin – Active Directory Replication Tools
In this post, we’ll learn about Repadmin command, it’s the Active Directory Replication Tools used to check Active Directory replication between Active Directory Domain Controller. Repadmin is a command line tool introduced by Microsoft in Windows Server 2003 R2 and still actively used in latest version of Microsoft e.g. Windows Server 2012 R2, etc. In the old post, we already learned the steps to promote a Domain Controller using PowerShell command.
In this post, we’ll learn about Repadmin Command and the steps to check AD Replication between Domain Controllers through GUI and Command Line Tool. The primary tool to check AD replication is “Repadmin” Command line tool was introduced with the Windows Server 2003 r2 and still used extensively to check the replication issues. Domain Controllers is used for the centralized management. It is also a repository for all the objects in a domain.
Steps to check AD Replication in Windows Server 2012 R2 through GUI
1. Let’s assume a scenario in which we have two Domain Controllers naming DC01 and DC02 in the domain. We’ll check Active Directory objects replication between these two Domain Controller.
2. Active Directory sites and services is a primary console used to replicate the AD objects between the Domain Controllers. We can also manage the objects represent the sites and servers which reside in those sites. Open Active Directory sites and services console, click on DC02 than right click on NTDS Settings. Under the NTDS Settings “Click on Replicate configuration from the selected DC“. Through this option, we pull the information from the selected DC.
3. It opens the confirmation dialogue box which tells that Active Directory Domain Services are replicated the connections. Click on OK. If you see any error or if Additional Domain Controller is recently promoted then you need to wait for sometime before you try to do forceful AD replication.
4. To push the information to selected DC click on “Replicate configuration to the selected DC“. It also opens the confirmation dialogue box that the Active Directory Domain Services are replicated with each other. Click on Next to continue.
Steps to check AD Replication in Windows Server 2012 R2 through Command Prompt (Repadmin)
1. The first command that we are run is “Repadmin /replsummary” to check the current replication health between the domain controllers. The “/replsummary” operation quickly and concisely summarizes replication state and relative health of a forest. After running the command it shows some information which was in two parts – Source DSA and Destination DSA.
We can see that both servers are listed in both sections, the reason behind this is the Active Directory uses multi-master domain model. Active Directory can be updated from any writable Domain Controller except the Read-only Domain Controller. The RODC would only be listed in Destination DSA section.
2. The second command is “Repadmin /Queue” shows the elements are remaining in the queue to replicate. It Displays inbound replication requests that the Domain Controller needs to issue to become consistent with its source replication partners.
3. The Third command is “Repadmin /Showrepl displays the replication status when the specified domain controller last attempted to implement inbound replication of Active Directory partitions. It helps to figure out the replication topology and replication failure.
4. The Fourth command is “Repadmin /syncall” it Synchronizes a specified domain controller with all replication partners. We recommend you not to run this command in the big environment because it forcefully replicates Active Directory objects between all the domain controller which leads to excessive load on the network.
5. Repadmin /KCC this command forces the KCC (Knowledge Consistency Checker) on targeted domain controller(s) to immediately recalculate its inbound replication topology. It checks and creates the connections between the Domain Controllers.
6. Repadmin /replicate starts the immediate replication of the specified directory partition to the destination domain controller from the source DC.
Hope you understood Active Directory replication using GUI mode and from command prompt. Please feel free to leave your experience and comments and suggestions in the comment section.