Pages

Thursday, April 18, 2013

57 Tips Every Admin Should Know

Active Directory

1. To quickly list all the groups in your domain, with members, run this command:
dsquery group -limit 0 | dsget group -members –expand

2. To find all users whose accounts are set to have a non-expiring password, run this command:
dsquery * domainroot -filter “(&(objectcategory=person)(objectclass=user)(lockoutTime=*))” -limit 0

3. To list all the FSMO role holders in your forest, run this command:
netdom query fsmo

4. To refresh group policy settings, run this command:
gpupdate

5. To check Active Directory replication on a domain controller, run this command:
repadmin /replsummary

6. To force replication from a domain controller without having to go through to Active
Directory Sites and Services, run this command:
repadmin /syncall

7. To see what server authenticated you (or if you logged on with cached credentials) you can run either of these commands:
set l
echo %logonserver%

8. To see what account you are logged on as, run this command:
whoami

9. To see what security groups you belong to, run this command:
whoami /groups

10. To see the domain account policy (password requirements, lockout thresholds, etc) run this command:
net accounts

Windows Networking

11. To quickly reset your NIC back to DHCP with no manual settings, run this command:
netsh int ip reset all

12. To quickly generate a text summary of your system, run this command:
systeminfo | more

13. To see all network connections your client has open, run this command:
net use

14. To see your routing table, run either of these commands:
 route print
netstat -r

15. Need to run a trace, but don’t have Netmon or Wireshark, and aren’t allowed to install either one? Run this command:
netsh trace start capture=yes tracefile=c:\capture.etl
netsh trace stop

16. To quickly open a port on the firewall, run this command, changing the name, protocol, and port to suit. This example opens syslog:
netsh firewall set portopening udp 161 syslog enable all

17. To add an entry to your routing table that will be permanent, run the route add command with the –p option. Omitting that, the entry will be lost at next reboot:
route add 0.0.0.0 mask 0.0.0.0 172.16.250.5 –p

18. Here’s a simple way to see all open network connections, refreshing every second:
netstat –ano 1

19. You can add a | findstr value to watch for only a specific connection, like a client ip.addr or port:
netstat –ano | findstr 216.134.217.20

20. You can use the shutdown to shutdown or reboot a machine, including your own, in a simple scheduled task like this:
shutdown –r –t 0 –m \\localhost

21. To make planned DNS changes go faster, reduce the TTL on the DNS records you plan on changing to 30 seconds the day before changes are to be made. You can set the TTL back to normal after you confirm the changes have been successful.

22. Set a short lease on DHCP scopes that service laptops, and set Microsoft Option 002 to release a DHCP leas on shutdown. This helps to ensure your scope is not exhausted and that machines can easily get on another network when the move to a new site.

Windows 7

23. Want to enable the local administrator account on Windows 7? Run this command from an administrative command prompt. It will prompt you to set a password:
net user administrator * /active:yes

24. You can do the same thing during install by pressing SHIFT-F10 at the screen where you set your initial user password.
Windows 7 supports several useful new keyboard shortcuts:

25. Windows Key+G
Display gadgets in front of other windows.

26. Windows Key++ (plus key)
Zoom in, where appropriate.

27. Windows Key+- (minus key)
Zoom out, where appropriate.

28. Windows Key+Up Arrow
Maximize the current window.

29. Windows Key+Down Arrow
Minimize the current window.

30. Windows Key+Left Arrow
Snap to the left hand side of the screen

31. Windows Key+Right Arrow
Snap to the right hand side of the screen.

32. To quickly launch an application as an administrator (without the right-click, run as administrator), type the name in the Search programs and files field, and then press Ctrl-Shift-Enter.
Here are some tips that can save you from buying commercial software:

33. Need to make a quick screencast to show someone how to do something? The Problem Steps Recorder can create an MHTML file that shows what you have done by creating a screen capture each time you take an action. Click the Start button and type ‘psr’ to open the Problem Steps Recorder.

34. Need to burn a disc? The isoburn.exe can burn ISO and IMG files. You can right click a file and select burn, or launch it from the command line.

35. Windows 7 includes a screen scraping tool called the Snipping Tool. I have tons of users request a license for SnagIt, only to find this free tool (it’s under Accessories) does what they need.

36. You can download this bootable security scanner from Microsoft that will run off a USB key, which is very useful if you suspect a machine has a virus.

37. A great way to save all your command line tools and make them available across all your computers is to install Dropbox, create a folder to save all your scripts and tools, and add that folder to your path. That way, they can be called from the command line or any other scripts, and if you update a script, it will carry across to any other machine you have.

Windows 2008

38. You can free up disk space on your servers by disabling hibernate. Windows 2008 will create a hiberfil.sys equal to the amount of RAM. This is very useful with VMs that have lots of RAM but smaller C: drives. To disable hibernation, and reclaim that space, run this command:
powercfg -h off

39. You can get to the complete collection of Sysinternals tools online. You can even invoke them from the run command. Use the url: http://live.sysinternals.com or the UNC path: \\live.sysinternals.com\tools.

40. Speaking of the Sysinternals tools, almost any command line in this article can be run remotely on another machine (as long as you have administrative rights) using the psexec command included in the Sysinternals tools.

41. You can kill RDP sessions at the command line when you find that all the RDP sessions to a server are tied up.
regsvr32 query.dll [enter] You only have to do this the first time.
query session /server:servername [enter]
reset session # /server:servername [enter]

42. You can create a list of files and display the last time they were accessed, which is very useful when a network drive is low on space and users swear they have to have that copy of Office 2003 on the network. My advice? If they haven’t touched it in two years, burn it to DVD or write it to tape and then delete it from disk:
dir /t:a /s /od >> list.txt [enter]

43. The Microsoft Exchange Err command is one of the best all around troubleshooting tools you will find, as it can decode any hex error code you find as long as the products are installed on the machine. Download it from here.

44. You can see all the open files on a system by running this command:
openfiles /query

45. You can pull all the readable data out of a corrupt file using this command:
recover filename.ext

46. Need to pause a batch file for a period of time but don’t have the sleep command from the old resource kit handy? Here’s how to build a ten second delay into a script:
ping -n 10 127.0.0.1 > NUL 2>&1

47. If your Windows website has stopped responding, or is throwing a 500 error, and you are not sure what to do, you can reset IIS without having to reboot the whole server. Run this command:
iisreset

48. You can use && to string multiple commands together; they will run sequentially.

49. If you find yourself restarting services frequently, you can use that && trick to create a batch file called restart.cmd and use it to restart services:
net stop %1 && net start %1

50. You can download a Windows port of the wget tool from here, and use it to mirror websites using this command:
wget -mk http://www.example.com/
Posted by at No comments :

Useful command prompt commands for system administrator


Control Panel

  • CONTROL: opens the control panel window
  • CONTROL ADMINTOOLS: opens the administrative tools
  • CONTROL KEYBOARD: opens keyboard properties
  • CONTROL COLOUR: opens display properties.Appearance tab
  • CONTROL FOLDERS: opens folder options
  • CONTROL FONTS: opens font policy management
  • CONTROL INTERNATIONAL or INTL.CPL: opens Regional and Language option
  • CONTROL MOUSE or MAIN.CPL: opens mouse properties
  • CONTROL USERPASSWORDS: opens User Accounts editor
  • CONTROL USERPASSWORDS2 or NETPLWIZ: User account access restrictions
  • CONTROL PRINTERS: opens faxes and printers available
  • APPWIZ.CPL: opens Add or Remove programs utility tool
  • OPTIONALFEATURES: opens Add or Remove Windows component utility
  • DESK.CPL: opens display properties. Themes tab
  • HDWWIZ.CPL: opens add hardware wizard
  • IRPROPS.CPL: infrared utility tool
  • JOY.CP: opens game controllers settings
  • MMSYS.CPL: opens Sound and Audio device Properties. Volume tab
  • SYSDM.CPL: opens System properties
  • TELEPHON.CPL: Opens phone and Modem options
  • TIMEDATE.CPL: Date and Time properties
  • WSCUI.CPL: opens Windows Security Center
  • ACCESS.CPL: opens Accessibility Options
  • WUAUCPL.CPL: opens Automatic Updates
  • POWERCFG.CPL: opens Power Options Properties
  • AZMAN.MSC: opens authorisation management utility tool
  • CERTMGR.MSC: opens certificate management tool
  • COMPMGMT.MSC: opens the Computer management tool
  • COMEXP.MSC or DCOMCNFG: opens the Computer Services management tool
  • DEVMGMT.MSC: opens Device Manager
  • EVENTVWR or EVENTVWR.MSC: opens Event Viewer
  • FSMGMT.MSC: opens Shared Folders
  • NAPCLCFG.MSC: NAP Client configuration utility tool
  • SERVICES.MSC: opens Service manager
  • TASKSCHD.MSC or CONTROL SCHEDTASKS: opens Schedule Tasks manager
  • GPEDIT.MSC: opens Group Policy utility tool
  • LUSRMGR.MSC: opens Local Users and Groups
  • SECPOL.MSC: opens local security settings
  • CIADV.MSC: opens indexing service
  • NTMSMGR.MSC: removable storage manager
  • NTMSOPRQ.MSC: removable storage operator requests
  • WMIMGMT.MSC: opens (WMI) Window Management Instrumentation
  • PERFMON or PERFMON.MSC: opens the Performance monitor
  • MMC: opens empty Console
  • MDSCHED: opens memory diagnostics tools
  • DXDIAG: opens DirectX diagnostics tools
  • ODBCAD32: opens ODBC Data source Administrator
  • REGEDIT or REGEDT32: opens Registry Editor
  • DRWTSN32: opens Dr. Watson
  • VERIFIER: opens Driver Verifier Manager
  • CLICONFG: opens SQL Server Client Network Utility
  • UTILMAN: opens Utility Manager
  • COLORCPL: opens color management
  • CREDWIZ: back up and recovery tool for user passwords
  • MOBSYNC: opens Synchronization center
  • MSCONFIG: opens System Configuration Utility
  • SYSEDIT: opens System Configuration Editor (careful while using this command)
  • SYSKEY: Windows Account Database Security management (careful while using this command)

Windows utility and applications

  • EPLORER: Opens windows Explorer
  • IEXPLORER: Opens Internet explorer
  • WAB: opens Contacts
  • CHARMAP: opens Character Map
  • WRITE: opens WordPad
  • NOTEPAD: opens Notepad
  • CALC: opens Calculator
  • CLIPBRD: opens Clipbook Viewer
  • WINCHAT: opens Microsoft Chat Interface
  • SOUNDRECORDER: opens sound recording tool
  • DVDPLAY: run CD or DVD
  • WMPLAYER: opens Windows Media Player
  • MOVIEMK: Opens untitled Windows Movie Maker
  • OSK: opens on-screen Keyboard
  • MAGNIFY: opens Magnifier
  • WINCAL: opens Calendar
  • DIALER: opens phone Dialer
  • EUDCEDIT: opens Private Character Editor
  • NDVOL: opens the mixer volume
  • RSTRUI : opens Tool System Restore (For Vista only)
  • %WINDIR%\SYSTEM32\RESTORE\rstrui.exe: opens Tool System Restore (for XP only).
  • MSINFO32: Opens the System Information
  • MRT : launches the utility removal of malware.
  • Taskmgr : Opens the Windows Task Manager
  • CMD: opens a command prompt
  • MIGWIZ: Opens the tool for transferring files and settings from Windows (Vista only)
  • Migwiz.exe: Opens the tool for transferring files and settings from Windows (for XP only)
  • SIDEBAR: Open the Windows (Vista only)
  • Sigverif : Opens the tool for verification of signatures of files
  • Winver : Opens the window for your Windows version
  • FSQUIRT: Bluetooth Transfer Wizard
  • IExpress opens the wizard for creating self-extracting archives. Tutorial HERE
  • MBLCTR: opens the mobility center (Windows Vista only)
  • MSRA : Opens the Windows Remote Assistance
  • Mstsc : opens the tool connection Remote Desktop
  • MSDT: opens the diagnostic tools and support Microsoft
  • WERCON: opens the reporting tool and solutions to problems (for Vista only)
  • WINDOWSANYTIMEUPGRADE: Enables the upgrade of Windows Vista
  • WINWORD : opens Word (if installed)
  • PRINTBRMUI : Opens migration wizard printer (Vista only)

Disk management

  • DISKMGMT.MSC: opens disk management utility
  • CLEANMGR: opens disk drive clean up utility
  • DFRG.MSC: opens disk defragmenter
  • CHKDSK: complete analysis of disk partition
  • DISKPART: disk partitioning tool

Connection management

  • IPCONFIG: list the configuration of IP addresses on your PC (for more information type IPCONFIG/? in the CMD menu)
  • INETCPL.CPL: opens internet properties
  • FIREWALL.CPL: opens windows firewall
  • NETSETUP.CPL: opens network setup wizard

Miscellaneous commands

  • JAVAWS: View the cover of JAVA software (if installed)
  • AC3FILTER.CPL: Opens the properties AC3 Filter (if installed)
  • FIREFOX: Mozilla launches Firefox (if installed)
  • NETPROJ: allow or not connecting to a network projector (For Vista only)
  • LOGOFF: closes the current session
  • SHUTDOWN: shut down Windows
  • SHUTDOWN-A: to interrupt Windows shutdown
  • %WINDIR% or %SYSTEMROOT%: opens the Windows installation
  • %PROGRAMFILES%: Opens the folder where you installed other programs (Program Files)
  • %USERPROFILE%: opens the profile of the user currently logged
  • %HOMEDRIVE%: opens the browser on the partition or the operating system is installed
  • %HOMEPATH%: opens the currently logged user C: \ Documents and Settings \ [username]
  • %TEMP%: opens the temporary folder
  • VSP1CLN: deletes the cache for installation of the service pack 1 for Vista
  • System File Checker (Requires Windows CD if the cache is not available):
    • SFC / scannow: immediately scans all system files and repairs damaged files
    • SFC / VERIFYONLY: scans only those files system
    • SFC / Scanfil = "name and file path": scans the specified file, and repaired if damaged
    • SFC / VERIFYFILE = "name and file path": Scans only the file specified
    • SFC / scanonce: scans the system files on the next restart
    • SFC / REVERT: return the initial configuration (For more information, type SFC /? In the command prompt CMD.
Posted by at No comments :
Subscribe to: Posts ( Atom )