Posts Tagged ‘VBS’

VBS scripts to query everything

Wednesday, December 24th, 2014

There are a few simple scripts developed by me to automate somehow regular reporting against set of servers. Result is usually presented in csv file to use it quickly in Excel or similar calculation software.

Scripts to query WMI:

Script to report installed roles and features:

getRoles.zip

usage: cscript /nologo getRoles.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output file: getRoles_26-09-2014_12-30-14.csv

1
2
3
4
5
6
Server;Role ID;Role Name
DC1;256;Role Administration Tools
DC1;257;Active Directory Domain Services Tools
DC1;299;Active Directory Domain Controller Tools
DC2;6;File Services
DC2;9;Active Directory Lightweight Directory Services

Script to report info about installed services:

getServices.zip

usage: cscript /nologo getServices.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output file: getServices_19-11-2013_07-30-15.csv

1
2
3
4
Server;Display Name;Start Mode;State;Status;Path Name;Account
FS1;Disk Defragmenter;Manual;Stopped;OK;C:\Windows\system32\svchost.exe -k defragsvc;localSystem 
FS1;DHCP Client;Auto;Running;OK;C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted;NT Authority\LocalService 
FS1;DNS Client;Auto;Running;OK;C:\Windows\system32\svchost.exe -k NetworkService;NT AUTHORITY\NetworkService

Script to report information about capacity of local disks:

getCapacity.zip

usage: cscript /nologo getCapacity.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output file: getCapacity_01-10-2013_13-01-51.csv

1
2
3
4
Hostname;Drive;Size (GB);Used (GB);Free space (GB);Percent of free space
DC1;C:;59,95;27,03;32,92;54,91% 
DC2;E:;350,00;6,49;343,50;98,15% 
FS1;C:;29,30;28,09;1,21;4,11%

Script to report activation status:

getActivationStatus.zip

usage: cscript /nologo getActivationStatus.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FileServer1

Example of output file: getActivationStatus_17-06-2013_10-12-18.csv

1
2
3
4
Hostname;Activated;Product 
DC1;Activated;Windows Server(R), ServerEnterprise edition 
DC2;Activated;Windows Server(R), ServerEnterprise edition 
FS1;Activated;Windows Server(R), ServerStandard edition

Script to report about sharings:

getSharings.zip

usage: cscript /nologo getSharings.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output:

1
2
3
4
5
6
7
Hostname;Share;Type;Path;Trustee;Permissions
FS1;print$;Disk Drive;C:\Windows\system32\spool\drivers;Everyone;READ
FS1;print$;Disk Drive;C:\Windows\system32\spool\drivers;Administrators;FULL CONTROL
FS1;Users;Disk Drive;C:\Users;Administrators;FULL CONTROL
FS1;Users;Disk Drive;C:\Users;Everyone;FULL CONTROL
FS1;Xerox Phaser 6110MFP;Printer Queue;Xerox Phaser 6110MFP,LocalsplOnly;Everyone;FULL CONTROL
FS1;Xerox Phaser 6110MFP;Printer Queue;Xerox Phaser 6110MFP,LocalsplOnly;ALL APPLICATION PACKAGES;FULL CONTROL

Scripts to query registry:

Script to report installed software:

getSoftware.zip

usage: cscript /nologo getSoftware.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output file: getSoftware_12-06-2013_13-51-58.csv

1
2
3
4
Server;Name;Version;Publisher;Installation Date;Install Location
DC1;Adobe Flash Player 10 ActiveX;10.0.32.18;Adobe Systems Incorporated;;
DC1;FileZilla Client 3.2.4.1;3.2.4.1;;;C:\Program Files\FileZilla FTP Client
DC1;Windows Internet Explorer 7;20070813.185237;Microsoft Corporation;20090819;

Script to report status of WSUS:

getWSUS.zip

usage: cscript /nologo getWSUS.vbs servers.txt

Example of input file: servers.txt

1
2
3
DC1
DC2
FS1

Example of output:

1
2
3
4
Server;AUOptions;Description;Scheduled Install Date;Next Detection Time 
DC1;1;Never check for updates (not recommended);2013-03-02 00:00:00;2013-03-01 14:07:17 
DC2;2;Check for updates but let me choose wheter to download and install them;;2013-03-02 03:04:51
FS1;4;Install updates automatically (recommended);2013-03-02 02:00:00;2013-03-01 17:28:32

Scripts to query LDAP:

Script to enumarate groups where user, specified in input file, belongs to directly (nesting level = 0) and indirectly (nesting level > 0):

getMemberOf.zip

usage: cscript /nologo getMemberOf.vbs users.txt

Example of input file: users.txt

1
2
3
Administrator
myUser
myNextUser

Example of output:

1
2
3
4
User;Group;Nesting level
Administrator;Administrators;0
Administrator;Schema Admins;0
Administrator;Denied RODC Password Replication Group;1

Feel free to use them.

 

DFS resources

Saturday, December 20th, 2014

Here is my trial of grouping DFS resources available to study and I’m sure I missed a lot useful web sites.

Microsoft Official Courses (MOC):

6419B: Configuring, Managing and Maintaining Windows Server 2008-based Servers

Module 4: Configuring and Managing Distributed File System:
– Lesson 1: Distributed File System Overview
– Lesson 2: Configuring DFS Namespaces
– Lesson 3: Configuring DFS Replication
Categorized as Level 200 by Microsoft

6421B: Configuring and Troubleshooting a Windows Server 2008 Network Infrastructure

Module 11: Optimizing Data Access for Branch Offices
– DFS Overview
– Overview of DFS Namespaces
– Configuring DFS Replication
Categorized as Level 200 by Microsoft

20411D: Administering Windows Server 2012

Module 9: Optimizing File Services:
– Overview of DFS
– Configuring DFS Namespaces
– Configuring and Troubleshooting DFS Replication
Categorized as Level 200 by Microsoft

20413C: Designing and Implementing a Server Infrastructure

Module 10: Planning and Implementing File Services:
– Planning and Implementing DFS
Categorized as Level 300 by Microsoft

20414B: Implementing an Advanced Server Infrastructure

Module 7: Planning and Implementing High Availability for File Services and Applications:
– Planning and Implementing DFS
Categorized as Level 300 by Microsoft

Internet:

Perfect repository of all significant resources available in Internet:

DFS Replication: Survival Guide

My own development:

Script to check replication status on all servers found in AD as DFS replication partners:

getDFSRStatus.zip

usage: cscript /nologo getDFSRStatus.vbs

Script to check replication status on one server specified as parameter:

getDFSRStatusLite.zip

usage: cscript /nologo getDFSRStatusLite.vbs <myDFSRServer>

Above scripts generate csv report with status of connection state, target folder state, backlog, etc. Here is an example of output file getDFSRStatus_06-11-2014_13-59-06.csv:

1
2
3
4
5
Member name;Target folder;Partner name;Replication group;Connection state;Connection last sync;Connection last sync duration [s];Connection last successful sync;Connection next sync;Target folder state;Backlog count;Stage size [MB];Conflict size [MB];Last conflict cleanup;Last tombstone cleanup
FS-01;I:\DATA;FS-02;RG_DATA;1 (Online);6-11-2014 8:16:22;1113;6-11-2014 8:16:22;6-11-2014 8:34:56;2 (Initial Sync);0;0;0;5-11-2014 22:34:39;5-11-2014 22:34:39
FS-01;I:\USERS;FS-02;RG_USERS;1 (Online);6-11-2014 8:16:22;1113;6-11-2014 8:16:22;6-11-2014 8:34:56;4 (Normal);0;40952;1;5-11-2014 22:44:50;5-11-2014 22:44:50
FS-01;I:\USERS;FS-03;RG_USERS;1 (Online);6-11-2014 6:34:58;1806;6-11-2014 6:34:58;6-11-2014 7:05:04;4 (Normal);0;21784;497;30-10-2014 22:22:08;30-10-2014 22:22:08
FS-01;I:\DATA;FS-03;RG_DATA;1 (Online);6-11-2014 6:34:58;1806;6-11-2014 6:34:58;6-11-2014 7:05:04;4 (Normal);0;45551;508;30-10-2014 22:22:09;30-10-2014 22:22:09

 

DFS-R topology

Saturday, May 4th, 2013

Topology of DFS-R can be easily visualized by using GraphViz tool.

Based on Active Directory Topology Visualization part 1 solution I’ve developed next script to have clear picture how DFS replication looks like. Design of solution is very the same: vbs script queries AD regarding to DFS replication groups, folders, servers and connections and formats result into dot language file. Then dot file is used as input for GraphViz package to generate picture of DFS-R topology.

Vbs script can be downloaded here without any limitation of using:

getDFSRTopology.zip

usage:

cscript /nologo getDFSRTopology.vbs

Result:

Generated dot file can look like this:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
DIGRAPH DFSRTopology {
 
fontname=helvetica;
node [fontname=helvetica, image="server.png", labelloc=b,color=white];
 
SUBGRAPH cluster_Bold_and_Beautiful {
label = "Group: Bold_and_Beautiful\nFolder: B&amp;B";
 
FS01_0 [label=FS01];
FS02_0 [label=FS02];
 
}
 
SUBGRAPH cluster_OnlySN_PR {
label = "Group: OnlySN_PR\lFolder: PR-SN"
 
FS03_1 [label=FS03];
FS02_1 [label=FS02];
 
}
 
SUBGRAPH cluster_REPL_Maximo_PROD {
label = "Group: REPL_Maximo_PROD\lFolder: PROD_CfR_Archive\lFolder: PROD_CfR_Current"
 
FS03_2 [label=FS03];
FS02_2 [label=FS02];
FS01_2 [label=FS01];
 
}
 
SUBGRAPH cluster_RG_CORPDATA_DATA {
label = "Group: RG_CORPDATA_DATA\lFolder: DATA"
 
FS02_3 [label=FS02];
FS01_3 [label=FS01];
 
}
 
SUBGRAPH cluster_RG_CORPDATA_USERS {
label = "Group: RG_CORPDATA_USERS\lFolder: USERS"
 
FS01_4 [label=FS01];
FS02_4 [label=FS02];
 
}
 
FS02_0 -> FS01_0;
FS01_0 -> FS02_0;
FS02_1 -> FS03_1;
FS03_1 -> FS02_1;
FS01_2 -> FS03_2;
FS02_2 -> FS03_2;
FS01_2 -> FS02_2;
FS03_2 -> FS02_2;
FS03_2 -> FS01_2;
FS02_2 -> FS01_2;
FS01_3 -> FS02_3;
FS02_3 -> FS01_3;
FS02_4 -> FS01_4;
FS01_4 -> FS02_4;
 
}

and based on it here is the picture (command: fdp *.dot -Tjpg -O):

fdp4

Rectangles represent replication groups with replication partners. Opposite to Active Directory Topology Visualization part 1 or Site links topology solutions, where nodes occur only once, here is needed one trick to have the same server in various groups. In line 88 in vbs script I pin to node names additional counter to have group specific servers, however their labels stay the same. It allows to see the same server name in various groups but nodes are definitely different from dot language viewpoint.

 

Site links topology

Saturday, May 4th, 2013

Based on solution developed for Active Directory Topology Visualization part 1 purpose I’ve made very similar script to have nice picture of defined site links in AD.

I think it’s quite good to know if gap in replication is not caused by lack of site link, etc.

Details:

Nothing special was developed by me. I simply query via vbs script this DN:

CN=IP,CN=Inter-Site Transports,CN=Sites,CN=Configuration,DC=my,DC=domain

and result is presented in dot language formatted file.

Vbs code can be downloaded here and feel free to use it:

getSiteLinks.zip

usage:

cscript /nologo getSiteLinks.vbs

Gallery:

Result of above vbs script can look like as follow:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
GRAPH siteLinks {
 
    node [fontname=helvetica, image="site.png", labelloc=b, color=white];
 
    Site1 -- HQ;
    Site2 -- Site3;
    Site2 -- HQ;
    Site3 -- HQ;
    Test -- HQ;
    Site2 -- HQ;
    Site4 -- HQ;
    Site5 -- Site6;
    Site5 -- HQ;
    Site6 -- HQ;
    Site6 -- HQ;
    Site7 -- Site3;
    Site7 -- HQ;
    Site3 -- HQ;
    Site8 -- Site4;
    Site8 -- Site9;
    Site8 -- HQ;
    Site4 -- Site9;
    Site4 -- HQ;
    Site9 -- HQ;
    Backup -- HQ;
    Site7 -- Site10;
    Site7 -- HQ;
    Site10 -- HQ;
    Test -- HQ;
 
}

and based on it GraphViz can generate:

dot diagram layout (command: dot *.dot -Tjpg -odot.jpg):

dot3

fdp diagram layout (command: fdp *.dot -Tjpg -ofdp.jpg):

fdp3

sfdp diagram layout (command: sfdp *.dot -Tjpg -osfdp.jpg):

sfdp3

Example of site node picture:

site

There is possible to use any other picture to present site in diagram than above one. The most important is to put picture file of site (site.png in this case) in the same location where dot file is stored before compilation.

 

Active Directory Topology Visualization part 1

Saturday, May 4th, 2013

Overview:

Except of Microsoft Active Directory Topology Diagrammer, which requires licensed MS Visio installed, there is no easy way to show how physical topology of Active Directory looks like. As the Chinese proverb goes, “A picture is worth a thousand words”, result of 17 repadmin /replsum <DC> commands even prepared in MS Excel will not tell as much as below screen:

circo

Details:

GraphViz is open-source tool based on dot language dedicated for drawing diagrams. It allows to present any graph or network in simple static form with information like direction of flow between nodes or node specific details. It is perfect tool to show how Active Directory Domain Controllers replicate each other and allows to find bottleneck or critical paths in AD physical topology.

Usage is very simple and requires GraphViz package installed locally and own developed script to prepare input for this tool based on dot language.

1. Below code is dot language script topology.dot used as input for GraphViz package to generate nice diagram:

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
DIGRAPH replicationTopologyLite {
 
    fontname=helvetica;
    node [fontname=helvetica, image="server.png", labelloc=t,color=white];
 
    SUBGRAPH cluster_AS {
    label = "AS"
 
    ASDC015;
 
    }
 
    SUBGRAPH cluster_US {
    label = "US"
 
    USDC014;
 
    }
 
    SUBGRAPH cluster_EU {
    label = "EU"
 
    EUDC014;
 
    }
 
    EUDC014 -> ASDC015;
    EUDC014 -> USDC014;
    ASDC015 -> EUDC014;
    USDC014 -> EUDC014;
 
}

note:

– AD Sites: EU, US and AS are specified as SUBGRAPH cluster_XX and are presented as rectangles in final diagram

– AD DCs: EUDC014, USDC014 and ASDC015 are simply nodes in diagram

– example of server picture to put into the same folder where topology.dot is located:

server

2. Command to generate picture of dot diagram layout:

dot topology.dot -Tjpg -O

 and result:

dot

3. Examples of commands to generate all kind of diagram layouts:

dot *.dot -Tjpg -odot.jpg
fdp *.dot -Tjpg -ofdp.jpg
sfdp *.dot -Tjpg -osfdp.jpg
circo *.dot -Tjpg -ocirco.jpg
neato *.dot -Tjpg -oneato.jpg
osage *.dot -Tjpg -oosage.jpg
twopi *.dot -Tjpg -otwopi.jpg

Practice:

Dot file can be prepared manually or a bit smarter. Below vbs is my own developed and many time used script which queries AD regarding to sites, domain controllers and connection objects and generates dot launguage file used later in GraphViz package.

Vbs script is available to download here and feel free to use it:

getReplicationTopologyLite.zip

usage:

cscript /nologo getReplicationTopologyLite.vbs DC

Gallery:

Below diagrams are examples of AD replication topology:

dot2

fdp1However more complex environments (>100 DCs) require a few tricks to make pictures more readable. I usually add dotted style for connections for example:

1
2
3
4
5
6
DIGRAPH replicationTopology {
 
    fontname=helvetica;
    node [fontname=helvetica, image="server.png", labelloc=b,color=white];
    edge [style=dotted];    ...

or trying to generate all kind of diagram layouts to choose the most suitable to study. In most cases huge networks need specific approach.

A few useful links:

1. Official GraphViz web site: http://www.graphviz.org

2. Dot guide: http://www.graphviz.org/pdf/dotguide.pdf

3. Wikipedia about GraphViz: http://en.wikipedia.org/wiki/Graphviz

4. Active Directory Topology Visualization part 2

Let the “more readable replication topology” be with you.