Windows Active Directory Commands for System Administrators
💻 30+ Essential Windows Active Directory Commands for System Administrators (With Examples) 🚀
System Administrators often need quick access to critical Windows Server commands and Active Directory tools to troubleshoot issues, manage services, or optimize server performance. Here’s a detailed guide to the most useful Windows and Active Directory commands that every sysadmin should master — along with examples and use cases.
🔹 Basic Windows Server
& System Commands
These commands are essential for day-to-day system
diagnostics, server management, and basic configurations.
1️⃣ hostname – Display the Server
Name 🖥️
Description: Shows the computer/server name.
Example:
C:\> hostname
Windows Active Directory Commands for System Administrators | Top Interview Questions & Answers 2025
2️⃣ whoami – Display Logged-In
User 👤
Description: Shows the current username of the
logged-in session.
Example:
C:\> whoami
3️⃣ net stats srv – Show Last
Reboot Time ⏱️
Description: Displays statistics about the server
service, including uptime.
Example:
C:\> net stats srv
Visit for latest Job Vacancies and News indianinQ8.com
4️⃣ diskmgmt.msc – Manage Disks 💽
Description: Opens Disk Management GUI to partition
and manage drives.
Example:
C:\> diskmgmt.msc
5️⃣ ncpa.cpl – Show Network
Connections 🌐
Description: Opens the Network Connections window.
Example:
C:\> ncpa.cpl
6️⃣ secpol.msc – Open Security
Policies 🔐
Description: Launches Local Security Policy manager.
Example:
C:\> secpol.msc
7️⃣ dsa.msc – Open Active
Directory Console 🗂️
Description: Opens Active Directory Users and
Computers.
Example:
C:\> dsa.msc
8️⃣ services.msc – Manage Services
⚙️
Description: Opens Windows Services GUI.
Example:
C:\> services.msc
9️⃣ ipconfig /all – Display Full
Network Config 📡
Description: Shows detailed IP, MAC, DNS, DHCP info.
Example:
C:\> ipconfig /all
🔟 mmc – Open Microsoft
Management Console 🧰
Description: Customizable GUI for adding admin
snap-ins.
Example:
C:\> mmc
1️⃣1️⃣
repadmin /showrepl – AD Replication Details 🔄
Description: Displays replication status between AD
domain controllers.
Example:
C:\> repadmin /showrepl
1️⃣2️⃣
shutdown /r – Restart Server 🔁
Description: Restarts the local or remote server.
Example:
C:\> shutdown /r /t 0
1️⃣3️⃣
shutdown /s – Shutdown Server 📴
Description: Powers down the machine.
Example:
C:\> shutdown /s /t 0
1️⃣4️⃣
repadmin /replsum – AD Replication Summary 📊
Description: Summarizes replication health and
errors.
Example:
C:\> repadmin /replsum
1️⃣5️⃣
regedit – Open Registry Editor 📝
Description: Opens the Windows Registry for editing
keys and values.
Example:
C:\> regedit
🔹 Common Active Directory
Ports (Client ↔ Server Communication)
Understanding these ports is critical for firewall
configuration and AD communication:
Port |
Protocol |
Service |
25 |
TCP |
SMTP (Email) 📧 |
53 |
UDP |
DNS 🌍 |
67 |
UDP |
DHCP 📦 |
80 |
TCP |
HTTP 🌐 |
443 |
TCP |
HTTPS 🔒 |
88 |
TCP/UDP |
Kerberos 🔑 |
3389 |
TCP |
RDP 🖥️ |
These ports must be open between domain controllers,
clients, and other servers for proper AD functioning.
Visit for More Forever Living Products - Forever Living Kuwait at https://foreverlivingkuwait.blogspot.com/
Windows Active Directory Commands for System Administrators | Top Interview Questions & Answers 2025
🔹 Networking Commands for
Windows Administrators
Mastering these commands is essential for network
troubleshooting, IP management, and diagnosing connectivity issues.
ipconfig – Show Basic Network Config 🌐
Example:
C:\> ipconfig
ipconfig /all – Detailed Network Info 📡
Displays: IP address, MAC, DNS, Gateway, etc.
ipconfig /release – Release DHCP IP 🚪
Use when changing networks or resetting connection:
C:\> ipconfig /release
ipconfig /renew – Renew IP from DHCP 🔄
Example:
C:\> ipconfig /renew
ipconfig /flushdns – Clear DNS Cache 🧹
Helps fix DNS-related issues.
C:\> ipconfig /flushdns
ping [IP] – Test Network Connectivity 📶
Example:
C:\> ping 8.8.8.8
tracert [IP/Domain] – Trace Network Route 🛣️
Shows hops between your system and target.
C:\> tracert google.com
nslookup [domain] – DNS Name Resolution 🌍
Example:
C:\> nslookup openai.com
netstat -an – View Active Connections 🔍
Monitor network activity and listening ports.
C:\> netstat -an
arp -a – Display ARP Table 📝
Maps IP addresses to MAC addresses.
C:\> arp -a
getmac – Show MAC Address 📡
Example:
C:\> getmac
net use – Connect to Shared Resource 🔗
Map a shared folder.
C:\> net use Z: \\server\sharedfolder
net share – List Shared Folders 📂
C:\> net share
net start – List Running Services ⚙️
C:\> net start
net stop [service] – Stop a Service ⛔
C:\> net stop spooler
netsh – Advanced Network Configuration 🛠️
Examples: Change IP, firewall rules, wireless
settings, etc.
C:\> netsh interface ipv4 show config
Kuwait bus routes and numbers, bus route kuwait CityBus, KPTC, KGL Mowsalat. find Kuwait’s public transport Muscat خط الحافلات الكويت.
Whether you’re managing Windows Servers, Active
Directory environments, or corporate networks, these commands are must-know
tools for:
- Diagnosing
system/network issues
- Managing
users, services, and roles
- Ensuring
server uptime and security
- Performing
routine and emergency maintenance
✅ Top 20 Windows System Administrator Interview Questions & Answers
1️⃣ What is Active Directory (AD)?
Answer:
Active Directory is a directory service developed by Microsoft for Windows
domain networks. It stores information about users, computers, and other
resources, and allows administrators to manage permissions and access.
2️⃣ What is the difference between a
domain, a workgroup, and a homegroup?
Answer:
- Domain:
Centralized management; used in enterprise environments with Active
Directory.
- Workgroup:
Peer-to-peer network; no centralized control.
- Homegroup:
(Deprecated) Used for easy sharing in home networks.
3️⃣ What is a Group Policy?
Answer:
Group Policy is a feature in Windows Server that allows administrators to
control user and computer settings centrally through Group Policy Objects
(GPOs). It helps enforce security, configure desktops, and deploy software.
4️⃣ What are FSMO roles in Active
Directory?
Answer:
FSMO (Flexible Single Master Operations) roles are special roles assigned to
domain controllers:
- Schema
Master
- Domain
Naming Master
- RID
Master
- PDC
Emulator
- Infrastructure
Master
Each serves a specific purpose in
maintaining AD functionality.
What is SAP Landscape?
5️⃣ What is the difference between LDAP
and LDAPS?
Answer:
- LDAP
(Lightweight Directory Access Protocol) uses
port 389 and is unencrypted.
- LDAPS
is the secure version using SSL/TLS on port 636.
6️⃣ What is a DNS and how does it work
in Windows Server?
Answer:
DNS (Domain Name System) translates domain names into IP addresses. In Windows
environments, it’s closely integrated with Active Directory for name resolution
of internal resources.
7️⃣ How do you promote a server to a
domain controller?
Answer:
- Install
Active Directory Domain Services (AD DS).
- Use
the dcpromo tool or Server Manager.
- Follow
the wizard to add a new forest, domain, or controller.
8️⃣ What command shows the IP
configuration of a machine?
Answer:
ipconfig /all
This shows IP address, subnet mask,
default gateway, MAC, and DNS settings.
9️⃣ What are common ports used in Active
Directory communication?
Answer:
- 88
– Kerberos
- 389
– LDAP
- 636
– LDAPS
- 3268
– Global Catalog
- 3389
– RDP
🔟 What is the difference between
OU and a Group in AD?
Answer:
- OU
(Organizational Unit): A container used to organize AD
objects; supports delegation.
- Group:
Used to assign permissions and manage access (Security and Distribution
groups).
1️⃣1️⃣ How do you troubleshoot AD
replication issues?
Answer:
Use commands:
- repadmin
/showrepl
- repadmin
/replsummary
- dcdiag
Also check DNS, time synchronization, and event logs.
1️⃣2️⃣ What is the SYSVOL folder?
Answer:
SYSVOL is a shared folder on domain controllers that stores scripts, policies,
and public files needed by clients and replicated using FRS or DFS-R.
1️⃣3️⃣ How do you manage services on a
remote server?
Answer:
- Use
services.msc via MMC (remote connection),
- Or
use PowerShell:
Get-Service -ComputerName ServerName
1️⃣4️⃣ What is a GPO Loopback
Processing?
Answer:
It allows user settings to be applied based on the computer's
location in AD, useful in kiosk or terminal environments. Modes: Merge
or Replace.
1️⃣5️⃣ How do you back up and restore
Active Directory?
Answer:
Use Windows Server Backup for full system state backup.
Restore using Directory Services Restore Mode (DSRM).
1️⃣6️⃣ What is the Global Catalog?
Answer:
A Global Catalog server stores partial attributes of all objects in the forest
and helps in login and searching objects across domains.
1️⃣7️⃣ How do you secure a Windows
Server?
Answer:
- Apply
security patches
- Enable
firewall & antivirus
- Use
GPOs for hardening
- Enable
auditing
- Disable
unused ports/services
1️⃣8️⃣ What is a Trust Relationship in
AD?
Answer:
A trust relationship enables users in one domain to access resources in
another. Types include:
- One-way/Two-way
- Transitive/Non-transitive
- External,
Forest, Shortcut
1️⃣9️⃣ What’s the use of netstat
command?
Answer:
netstat -an shows active connections, listening ports, and network
statistics — useful for diagnosing networking issues.
2️⃣0️⃣ What is the difference between
RDP and VNC?
Answer:
- RDP
(Remote Desktop Protocol) is built into Windows and provides
session-based remote access.
- VNC
(Virtual Network Computing) is platform-independent,
open-source, and mirrors the screen (no session control).
- Be
confident with real-world scenarios.
- Practice
using tools like ADUC, GPMC, Event Viewer, PowerShell.
- Know
the latest Windows Server version features (e.g., 2019, 2022).
Windows Active Directory Commands for System Administrators | Top Interview Questions & Answers 2025
✅ Top 5 Windows System
Administrator Interview Tips
Tip # |
Tip / Point |
Details / Why It’s
Important |
1️⃣ |
Master Core AD & Windows Commands |
Know how to use commands like ipconfig, repadmin, netstat,
dsa.msc, mmc, etc. for real tasks. |
2️⃣ |
Understand AD Architecture & Roles |
Be clear on domains, OUs, FSMO roles, replication, DNS,
GPOs, and trust relationships. |
3️⃣ |
Troubleshooting is Key |
Be prepared to explain how you'd handle issues like
replication errors, login failures, or DNS problems. |
4️⃣ |
Use Real-World Scenarios in Answers |
Interviewers love practical answers over textbook
definitions — relate your experience clearly. |
5️⃣ |
Know Security & Backup Procedures |
Understand system hardening, patching, least privilege,
and how to back up/restore AD and servers. |
windows system administrator commands, active directory interview questions, windows server troubleshooting tips, essential windows admin tools, group policy commands, active directory replication issues, windows server interview questions, networking commands for sysadmins, windows admin cheat sheet, it support command line tools
#SystemAdministrator #ActiveDirectory #WindowsServerCommands #Networking #ITSupport #SysadminTips #WindowsTools #ADCommands #ITCheatSheet
0 Comments