Thursday, January 10, 2013

Identifying a Domain Controller GUID on Windows 2003


Applies To: Windows Server 2003 with SP1 or SP2


Note: Tried this recently on Windows 2008 R2 and it worked as well.


Identifying the correct domain controller GUID for an SMTP replication certificate may pose a challenge for some administrators who are unfamiliar with the nuances of Active Directory and domain controller objects in the directory. To determine a specific domain controller GUID from a Windows XP or Windows Server 2003 computer joined to the Active Directory forest, perform the following steps.
note 
Note
The dsquery utility is part of the Windows Server 2003 Administration Tools Pack and is not available on Windows 2000 computers.

  1. Log on to the computer with a domain account.
  2. From a command-line prompt, run the following command.
    dsquery * “CN=<hostname>,OU=Domain Controllers,DC=<yourdomain>,
    DC=<yourdomain>” –scope base –attr objectguid
     
    You must replace the <hostname> variable with the name of the specific domain controller you want and the <yourdomain> variable with the domain name of your specific domain.

    For example:
    dsquery * “CN=DC01,OU=Domain Controllers,DC=contoso,DC=com” –scope base –attr objectguid
    
    The command will result in output similar to the following:
    Objectguid 
    {57A8AAF4-686E-4128-8712-B6CA89FBF5BC}
     
  3. Log off the computer.

1 comment: