Category Archives: Active Directory

 – Firewall Ports that you need to open or override for the Domain service to work as expected

         123:udp:*:enabled:NTP

         3268:tcp:*:enabled:Global Catalog LDAP

         389:tcp:*:enabled:LDAP

         389:udp:*:enabled:LDAP

         53:tcp:*:enabled:DNS

         53:udp:*:enabled:DNS

         53211:tcp:*:enabled:AD Replication (Note: use the port number selected in 1.b.i above)

         53212:tcp:*:enabled:File Replication Service (Note: use the port number selected in 1.b.ii above)

         88:tcp:*:enabled:Kerberos

         88:udp:*:enabled:Kerberos

 

 Active Directory Query to list members in specific group

using windows server 2008 command prompt, run it as administrator and type the following command:

ldifde -f groupMembers.txt -r “(&(objectClass=User)(memberOf=CN=myGroup,OU=MyContainer,DC=myOrg,DC=local))” -l “sAMAccountName,givenName,sn”

where “groupMembers.txt” is the text file that is going to be saved under your c:\ drive that contains the group members.