Full Blog
Windows Server
- Featured
  
  Advanced Troubleshooting Failed Replacement of Physical Disk Storage Spaces Direct S2D / Azure Stack HCI
  
  Apr 10, 2024 | S2D, Windows Server |
- Featured
  
  Troubleshooting Active Directory Account Lockouts with Lockoutstatus.exe
  
  Apr 10, 2024 | Windows Server |
- Featured
  
  Troubleshooting Remote Connectivity Using netsh wlan show wlanreport
  
  Apr 10, 2024 | Scripts, Windows Server |
Veeam
Cyber Security
Azure
Step-by-Step
Books
Youtube videos
MVP
- Featured
  
  A Deeper Look into ChatGPT 4.0: Harnessing AI for Building Test Environments in Hyper-V
  
  Mar 18, 2023 | Cool Tools, Creative, Hyper-V, Scripts, Windows Server |
- Featured
  
  Pros and Cons of Using ChatGPT 3.5 for PowerShell Scripting in Hyper-V Test Environments
  
  Mar 18, 2023 | Cool Tools, Creative, Hyper-V, Windows Server |
- Featured
  
  Will ChatGPT Replace the IT Administrator? A closer look at some Hyper-V and AD PowerShell with ChatGPT 3.5 and 4
  
  Mar 18, 2023 | Cool Tools, Creative, Hyper-V, Scripts, Windows Server |
- MVPDays
- Speaking
- Books
- Videos
Authors

How to tune SRV records for old domain controllers

Posted by Cristal Kawula | Mar 16, 2022 | Windows Server | 0 |

How to tune SRV records for old domain controllers

To prevent old domain controllers from authenticating clients, we can tune their Service Records by modifying their local registry. This will drain off any of the live Active Directory Domain Services (ADDS) connections for these domain controllers before decommissioning.

1.Logon to TMDC02 as Techmentor\Administrator.

2. Run Regedit.

3. Create a new Registry key in HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters.

4. New Reg DWORD 32Bit.

5. LdapSrvPriority.

6. Set the value to 10.

7. Open an Administrative Command Prompt.

8. Type: Net Stop Netlogon & Net Start Netlogon.

9. Open the DNSmgmt.msc (DNS Management Console) and review the _MSDSC.techmentor.com zone.

10. Validate that the change in the Service Records has taken place à You can see TMDC02 with a value of 16 now.

11. Next, open Perfmon and review the active LDAP Connections.

12. Add NTDS\LDAP Client Sessions.

13. Note the number of LDAP Client Sessions. As active clients reboot.

14. Reboot the non-domain controller VM’s.

15. Check Perfmon again.

16. Repeat the steps to tune the Service Records for the remaining legacy domain controllers.

Hope you enjoy this post.

Cristal Kawula

Related

About The Author

Cristal Kawula

Cristal Kawula is an accomplished author, blogger, and world-renowned speaker who is highly regarded for her expertise in enterprise consulting. With over 20 years of experience in the IT industry, she is a trusted leader who has helped numerous clients with their IT challenges. Cristal has been recognized as a Microsoft MVP for the past several years and is highly respected within the Microsoft community. She is a sought-after speaker who has presented at numerous conferences and events around the world. Cristal is also a prolific writer who has authored several books and hundreds of articles on Microsoft technologies. As the founder of TriCon Elite Consulting, Cristal leads a team of experts who provide top-notch consulting services to clients worldwide. Her deep knowledge of Microsoft technologies, combined with her ability to understand clients' unique needs, makes her a valuable asset to any organization. Cristal is known for her innovative thinking, her ability to solve complex problems, and her dedication to delivering exceptional service to her clients. Her passion for technology and her commitment to helping others succeed have made her a highly respected expert in the industry. Follow her on twitter @supercristal1

Leave a ReplyCancel reply

Translate our Blog

Subscribe to our videos

Subscribe to our Blog

Our Authors

Follow Us

Category

Blog Stats

1,289,958 hits