Export (0) Print
Expand All
3 out of 3 rated this helpful - Rate this topic

Repadmin

Updated: August 22, 2005

Applies To: Windows Server 2003 R2

Repadmin

Performs tasks related to replication, including managing and modifing replication topology, forcing replication events, and displaying replication metadata and up-to-date vectors. Repadmin contains several subcommands, which are described below in detail.

Notes

  • Most repadmin subcommands apply to both Active Directory Application Mode (ADAM) and Active Directory, except as noted in the description for each subcommand.

  • Not all general parameters apply to all subcommands.

General syntax

repadmin subcommand [dsa] [/u: UserName] [/pw: {Password|*}] [/rpc] [/ldap] [/homeserver:dsaname]

General parameters

subcommand
One of the repadmin subcommands described in the "Subcommands" section.

 

Value Description

Dsaname

One of the following:

  • computername:portnumber

    Specifies an ADAM instance or Active Directory domain controller, using the name of the computer on which the directory service is running and (for ADAM only) the port number used for communication, for example, adam01:389 or adam01:636.

  • DNSname:portnumber

    Specifies an ADAM instance or Active Directory domain controller by Domain Name System (DNS) name of the computer on which the directory service is running and (for ADAM only) the port number used for communication, for example, adam01.microsoft.com:389 or adam01.microsoft.com:636.

dsaguid

Specifies an ADAM instance or Active Directory domain controller using the globally unique identifier (GUID) of the directory service. When you use "dsaguid" against an ADAM configuration set, you must also use the /homeserver: parameter.

.

Repadmin attempts to select a directory server automatically. When you use "." against an ADAM configuration set, you must also use the /homeserver: parameter.

*

Repadmin selects all ADAM instances or Active Directory domain controllers in the ADAM configuration set or Active Directory forest. When you use "*" against an ADAM configuration set, you must also use the /homeserver: parameter.

site:sitename

Selects all ADAM instances or Active Directory domain controllers in the site called sitename, for example, site:microsoftsite1. When you use "site:" against an ADAM configuration set, you must also use the /homeserver: parameter.

fsmo_dnm:

Selects the directory server holding the naming operation master role (for ADAM), or the domain naming operation master role (for Active Directory). When you use fsmo_dnm: against an ADAM configuration set, you must also use the /homeserver: parameter.

fsmo_schema:

Selects the directory server holding the schema operation master role. When you use fsmo_schema: against an ADAM configuration set, you must also use the /homeserver: parameter.

dsa {dsaname|dsaguid|.|*|site:sitename|fsmo_dnm:|fsmo_schema:}
The dsa parameter represents the directory server (ADAM instance or Active Directory domain controller) to be targeted by the repadmin subcommand. The dsa parameter can be provided in a number of ways, as described in the following table. (Type repadmin /listhelp at the command line for additional information about the dsa parameter.)

/u: UserName
Specifies the account name to use for binding to the directory. By default, /u uses the account name with which the user is currently logged on. You can use any of the following formats to specify an account name: account name (for example, Linda), domain\account name (for example, widgets\Linda), or user principal name (UPN) (for example, Linda@cohovineyard.com)

/pw: {Password|*}
Specifies the password to use for authentication. If you type *, you are prompted for a password.

/rpc
Forces repadmin to communicate using a remote procedure call (RPC) session.

/ldap
Forces repadmin to communicate using a Lightweight Directory Access Protocol (LDAP) session. If LDAP communication fails, repadmin attempts to communicate using RPC. LDAP is the default communication method for repadmin.

/homeserver: dsaname
Forces repadmin to run against a specific ADAM configuration set or Active Directory forest, determined by the configuration set or forest membership of the directory server that is represented by dsaname. Dsaname can be specified in the following formats for an ADAM instance: computername:portnumber or DNSname:portnumber Dsaname can be specified in the following formats for an Active directory domain controller: computername or DNSname. You must use this parameter when you run repadmin against an ADAM configuration set, and dsaguid, "*", ".", "site:site", "fsmo_dnm:", or "fsmo_schema:" are used as the value for the dsa parameter.

Note

  • Not all repadmin subcommands require the dsa parameter.

Subcommands

To view the repadmin subcommand syntax, click a repadmin subcommand:

repadmin bind

Connects to and displays the replication features for a directory server.

Syntax

repadmin /bind [dsa] [/u: UserName] [/pw: {Password|*}] [/rpc] [/ldap]

Parameters

/bind [dsa]
Specifies the directory server for which information will be displayed. For details about the dsa parameter, see General parameters.

Other parameters
For details about other parameters, see General parameters.

repadmin bridgeheads

Lists the directory servers acting as bridgehead servers for a specified site.

Syntax

repadmin /bridgeheads [dsa] [/verbose] [/u: UserName] [/pw: {Password|*}] [/rpc] [/ldap]

Parameters

/bridgeheads dsa
Specifies a directory server that is located in the site for which bridgehead servers will be listed. For details about the dsa parameter, see General parameters.

Other parameters
For details about other parameters, see General parameters.

repadmin checkprop

Compares the properties of specified directory servers to determine if they are up to date with each other. The source directory server contains the original information that needs to be checked. The data on the destination directory server is compared to the data on the source directory server.

Syntax

repadmin /checkprop [dsa] NamingContext OriginatingDCInvocationID OriginatingUSN

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

NamingContext
Specifies the distinguished name of the directory partition on the source directory server.

OriginatingDCInvocationID
Specifies the unique hexadecimal number that identifies an object on a source directory server. The InvocationID can be retrieved by using showrepl.

OriginatingUSN
Specifies the Update Sequence Number (USN) for the object on the source directory server. The USN is for the object whose InvocationID is already listed.

repadmin dsaguid

Returns a server name when given a GUID.

Syntax

repadmin /dsaguid [dsa] [GUID]

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

GUID
Specifies the unique hexadecimal number that identifies the directory server. The GUID can be retrieved by using showrepl.

repadmin failcache

Displays a list of failed replication events that are detected by Knowledge Consistency Checker (KCC).

Syntax

repadmin /failcache [dsa]

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

repadmin istg

Returns the computer name of the Intersite Topology Generator (ISTG) server for a specified site.

Syntax

repadmin /istg [dsa] [/verbose]

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

/verbose
Lists detailed information.

repadmin kcc

Forces KCC to calculate replication topology for a specified directory server. By default, this calculation occurs every 15 minutes.

Syntax

repadmin /kcc [dsa] [/async]

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

/async
Specifies that the operation will be asynchronous. This means that repadmin starts the replication event, but it does not expect an immediate response from the destination directory server. Use this parameter to start kcc without waiting for it to complete.

repadmin latency

Displays the amount of time between replications, using the ISTG Keep Alive time stamp.

Notes

  • This command does not apply to ADAM.

  • The ISTG Keep Alive time stamp is not used in forests that are set to Windows Server 2003 forest functional level. Instead, in those environments, use repadmin /showutdvec /latency.

Syntax

repadmin /latency [dsa] [/verbose]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

/verbose
Lists detailed information.

repadmin notifyopt

Displays or sets the notification timing settings for replication of a specified directory partition.

Syntax

repadmin /notifyopt [dsa] NamingContext [/first:Value] [/subs:Value]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

NamingContext
Specifies the distinguished name of the directory partition on the source directory server.

/first: Value
The number of seconds after a change is made before the directory server notifies its first replication partner that there is a change.

/subs: Value
After the first replication partner is notified of a change, specifies the number of seconds to wait before notifying the next replication partner.

repadmin queue

Displays tasks that are waiting in the replication queue.

Syntax

repadmin /queue [dsa]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

repadmin replauthmode

Modifies or displays the replication authentication mode in use by an ADAM configuration set.

Syntax

repadmin /replauthmode dsa [newmode]

Parameters

Dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

newmode
Specifies the replication authentication mode to be used by the configuration set. If this parameter is not specified, the command will display the current replication authentication mode. For information about replication authentication modes in ADAM, see Understanding ADAM replication and configuration sets.

Other parameters
For details about other parameters, see General parameters.

repadmin replicate

Starts synchronization for the specified directory partition between the source and destination directory servers. The source GUID can be determined when viewing the replication partners by using showrepl.

Syntax 1

repadmin /replicate destination_dsa source_dsa [/force] [/async] [/full] [/addref]

Syntax 2

repadmin /replicate destination_dsa [/force] [/async] [/full] [/addref] /allsources

Parameters

destination_dsa
Specifies the host_name[:port] of the destination directory server with which you want to replicate. This parameter cannot be used with /allsource. For details about valid values for this parameter, see dsa in General parameters.

source_dsa
Specifies the host_name[:port] of the source directory server with which you want to replicate. This parameter cannot be used with /allsource. For details about valid values for this parameter, see dsa in General parameters.

/force
This parameter is used to override the Disable Replication option on a directory server. Do not use this parameter unless you are certain that replication has been disabled, and that you want to override this setting.

/async
Specifies that the operation will be asynchronous. This means that repadmin starts the replication event, but it does not expect an immediate response from the destination directory server. Use this parameter when there are slow links between directory servers.

/full
Forces a full replication of all objects from the destination directory server.

/addref
Directs the source to check for a notification entry on the source. If the source does not have a notification entry for this destination, one is added.

/allsources
A given destination can have multiple sources for the same naming context. Directs the destination to sync with all sources instead of just one. This parameter cannot be used with source_dsa.

/readonly
This parameter is ignored by the /replicate operation.

repadmin replsingleobj

Replicates a single object between any two directory servers that have partitions in common. The two directory servers do not have a replication agreement. Replication agreements can be shown by using the repadmin /showrepl command.

Syntax

repadmin /replsingleobject dsa DsaSourceGUID ObjectDN

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

DsaSourceGUID
Specifies the unique hexadecimal number that identifies the object that will be replicated. The objectGUID can be retrieved by using showrepl.

ObjectDN
Specifies the distinguished name of the object.

repadmin showattr

The /showattr operation displays objects and their attributes.

Syntax

repadmin /showattr dsa OBJ_LIST [OBJ_LIST_OPTIONS] [/attr|/attrs: attribute attribute ...] [/allvalues] [/long] [/nolongblob] [/nolongblob] [/nolongfriendly] [/dumpallblob]

Parameters

Dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters. This is a required parameter.

OBJ_LIST
This parameter takes a distinguished name or a special keyword that expands into a distinguished name. The keywords are as follows: <DistinguishedName> specify the distinguished name of an object; Ncobj:config:; Ncobj:schema:; Ncobj:domain: This keyword represents the distinguished name of the domain directory partition of the directory server; Dsaobj: This keyword represents the NTDS settings object of the directory server; and, "" Use an empty string to specify the RootDSE.

OBJ_LIST_OPTIONS
The OBJ_LIST_OPTION parameter is required to perform a generic LDAP search from the command line. The parameter requires a BaseDN, with the ability to use a search modifier option. The valid search modifier options are as follows: /filter:<ldap_filter>; /base; /subtree; and, /onelevel. See the LDAP documentation for the LDAP filter syntax.

/atts:<attribute, attribute...>
Returns only the attributes that are specified. Separate each listed attribute with a comma. By default, returns all attributes.

/allvalues
For an attribute, the tool only displays 20 values unless this flag is specified, in which case it shows all values.

/long
Displays one value per line.

/nolongblob
This parameter is ignored by /showattr.

/nolongfriendly
This parameter is ignored by /showattr.

/friendlyblob[:attribute attribute ...]
If any attributes are specified, only those attributes that are named are displayed in friendly format. Otherwise, all known BLOBs are formatted.

/nolongfriendly
Does not format BLOBs.

/dumpallblob
Dumps the BLOB in a default byte-by-byte format if there is not a friendly formatted interpretation available for it.

/nodumpallblob
Does not show the BLOB if there is not a formatted interpretation available.

/attr|/attrs: attribute attribute ...
The parameters /attr or /attrs:, if present, specify that only those named attributes are displayed.

noteNote
A BLOB in this context means an attribute that is not a simple type, like a string or an integer. A BLOB is a complex structured type that is stored as binary bytes. To make sense of the BLOB, a program must interpret it and format it. A friendly BLOB is a BLOB that the program knows about and can format in an understandable way. The program has a list of BLOBs that it understands.

repadmin showcert

Displays the certificates (used with Simple Mail Transfer Protocol (SMTP)-based replication) that are loaded on a specified directory server.

noteNote
This command does not apply to ADAM.

Syntax

repadmin /showcert dsa

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

repadmin showchanges

Displays changes from a specified directory partition or changes to a specified object. "Syntax 1" saves changes to a directory partition. If this information is saved to a file, the getchanges operation can be run again for comparison. "Syntax 2" lists changes to a specified object.

noteNote
For this command to run properly, the account under which the command is run must possess the replication get changes right on the specified directory partition.

Syntax 1

repadmin /showchanges source_dsa NamingContext [/cookie: File] [/atts: attribute,attribute,...]

Syntax 2

repadmin /showchanges dest_dsa SourcedsaObjectGUID NamingContext [/verbose] [/statistics] [/noincremental] [/objectsecurity] [/ancestors] [/atts: attribute1,attribute2,...] [/filter: ldap filter]

Parameters

dest_dsa
Specifies the host name of the destination directory server from which to enumerate the host directory servers.

source_dsa
Specifies the host name of the directory server that hosts the directory partition whose changes you want to view.

NamingContext
Specifies the distinguished name of the directory partition.

/cookie: File
Specifies a name for the file to which list changes are saved.

/atts: attribute1attributes...
Returns only the attributes specified. Separate each listed attribute with a comma.

SourcedsaObjectGUID
Specifies the unique hexadecimal number that identifies the object whose changes will be listed. The objectGUID can be retrieved by using the showrepl operation.

/verbose
Lists detailed information.

/statistics
Displays a summary of information about changes, instead of a list of individual changes.

/noincremental
Returns changes in value change format, which lists current values for attributes as well what attributes have been added or deleted. If not specified, changes are returned in attribute change format, which shows only the current value of the attribute.

/objectsecurity
Overrides the need for the Get Changes right to the directory partition. By default, this right is needed to run the GetChanges parameter. However, only changes that the currently logged on user has the rights to view are displayed.

/ancestors
Returns changes in USN order.

/filter: ldap filter
Returns only those changes that meet the filter requirements.

noteNote
The information from "Syntax 1" can be saved to a file for later comparison.

repadmin showconn

Displays the connection objects for a specified directory server. The default is local site.

Syntax

repadmin /showconn [dsa] [ServerRDN|ContainerDN|dsa_GUID] [/From:ServerRDN] [/intersite]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

ServerRDN
Specifies the relative distinguished name of a server.

ContainerDN
Specifies the distinguished name of a container.

dsa_GUID
Specifies the unique hexadecimal number that identifies the directory server. The GUID can be retrieved by using the showrepl operation.

/From: ServerRDN
Displays only the connection objects that exist to the specified server. By default, all connection objects are displayed.

/intersite
Displays only those connection objects that are between sites.

repadmin showctx

Displays a list of computers that have opened sessions with a specified directory server.

Syntax

repadmin /showctx [dsa] [/nocache]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

/nocache
Specifies that GUIDs are left in hexadecimal form. By default, GUIDs are translated into strings.

repadmin showism

Queries the Intersite Messaging Service (ISM) for site routes. This operation cannot be executed remotely.

noteNote
This command does not apply to ADAM.

Syntax

repadmin /showism [TransportDN] [/verbose]

Parameters

TransportDN
Specifies whether the mail server is using SMTP or RPC to send messages.

/verbose
Lists detailed information.

noteNote
This command cannot be run against a remote directory server.

repadmin showmsg

Displays the error message for a given error number.

Syntax

repadmin /showmsg {Win32Error|DSEventID /NTDSMSG}

Parameters

Win32Error
Returns a short description of the given Win32 error code.

DSEventID /NTDSMSG
Returns the actual event log text for the specified event ID.

repadmin showncsig

Each directory server maintains a directory partition signature list. This command displays a list of the removed application partition GUIDs. An application directory partition can be configured to be held or not held on a particular directory server using dsdbutil (for ADAM), or ntdsutil (for Active Directory).

Syntax

repadmin /showncsig [dsa]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

repadmin showobjmeta

Displays the replication metadata for a specified object that is stored in the directory, including attribute ID, version number, originating and local USN, and originating server's GUID and Date and Time stamp. By comparing the replication metadata for the same object on different directory servers, an administrator can determine whether replication has taken place.

Syntax

repadmin /showobjmeta [dsa] ObjectDN [/nocache] [/linked]

Parameters

dsa
Specifies the host name of the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

ObjectDN
Specifies the distinguished name of the object.

/nocache
Specifies that GUIDs are left in hexadecimal form. By default, GUIDs are translated into strings.

/linked
Displays metadata that is associated with, but not stored with, the specified object.

repadmin showoutcalls

Displays calls that have been made by the specified directory server to other directory servers but not yet answered.

Syntax

repadmin/showoutcalls [dsa]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

repadmin showproxy

Lists cross-domain move proxy objects. When an object is moved from one domain to another, a marker remains in the original domain. This marker is called a proxy.

noteNote
This command does not apply to ADAM.

Syntax 1

repadmin /showproxy [dsa] [NamingContext] [matchstring]

Syntax 2

repadmin /showproxy [dsa] [ObjectDN] [matchstring] /movedobject

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

NamingContext
Specifies the distinguished name of the directory partition on the source directory server.

ObjectDN
Specifies the distinguished name of the object.

matchstring
Specifies a filter for the output. Type a string of characters that must be present in the distinguished name to display the object.

movedobject
Displays a history of information from the original domain on a moved object after it has reached the new domain.

repadmin showrepl

Displays replication information. Inbound replica links are displayed by default. Outbound links can also be shown, as well as connections corresponding to those links. The command also displays errors corresponding to replica links that cannot be created by KCC. This helps the administrator build a visual representation of the replication topology and see the role of each directory server in the replication process.

Syntax

repadmin /showrepl [dsa] [SourceDCObjectGUID] [NamingContext] [/verbose] [/nocache] [/repsto] [/conn] [/csv] [/all] [/errorsonly] [/intersite]

Parameters

dsa
Specifies the host name of the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

SourceDCObjectGUID
Specifies the unique hexadecimal number that identifies the object whose replication events will be listed.

NamingContext
Specifies the distinguished name of the directory partition.

/verbose
Lists detailed information.

/nocache
Specifies that GUIDs are left in hexadecimal form. By default, GUIDs are translated into strings.

/repsto
Lists the directory servers that pull replication information from the specified directory partition. To see the outbound neighbors, specify /repsto or /all.

/conn
Displays the connection objects that are associated with each link.

/csv
Displays the output of the repadmin showrepl operation in a Comma Separated Variable (CSV) format for viewing and analysis in Microsoft Excel. Repadmin supports redirection of screen output to a file.

/all
Displays all replication partners.

/errorsonly
Only shows the partnership if it has an error associated with it.

/intersite
Only shows this partnership if the source server belongs to a different site than the site of the server on which the command is being run.

repadmin showscp

Displays service connection point (SCP) objects in Active Directory that have been created by ADAM instances. This command must be run against an Active Directory domain controller.

Syntax

repadmin /showscp [dsa]

Parameters

dsa
Specifies the host name of a directory server that the object will be replicated to. For details about the dsa parameter, see General parameters.

repadmin showsig

Displays the retired invocation IDs on a directory server. A directory server changes its invocation ID when it is restored or when it rehosts an application partition.

Syntax

repadmin /showsig [dsa]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

repadmin showtime

Converts a directory service time value to string format for both the local and the Universal Time, Coordinated (UTC) time zones.

Syntax

repadmin /showtime [DSTimeValue]

Parameters

DSTimeValue
Specifies the time value to be converted.

noteNote
With parameters omitted, repadmin /showtime displays the current system time in both the directory service format and the string format.

repadmin showtrust

Lists all Active Directory domains that are trusted by a specified Active Directory domain.

noteNote
This command does not apply to ADAM.

Syntax

repadmin /showtrust [dsa]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

repadmin showutdvec

Displays the highest USN for the specified directory server. This information shows how up to date a replica is with its replication partners.

Syntax

repadmin /showutdvec dsa NamingContext [/nocache] [/latency]

Parameters

dsa
Specifies the directory server to which the object will be replicated. For details about the dsa parameter, see General parameters.

NamingContext
Specifies the distinguished name of the directory partition.

/nocache
Specifies that GUIDs are left in hexadecimal form. By default, GUIDs are translated into strings.

/latency
Sorts the information by the time required to complete the replication. By default, the information is sorted by USN.

repadmin showvalue

Displays the values of the type, last modified time, originating directory server, and distinguished name of a specified object.

Syntax

repadmin /showvalue [dsa] ObjectDN [AttributeName] [ValueDN] [/nocache]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

ObjectDN
Specifies the distinguished name of the object.

AttributeName
Specifies a single attribute whose value you want to display.

ValueDN
Specifies the distinguished name of the attribute that is displayed.

/nocache
Specifies that GUIDs are left in hexadecimal form. By default, GUIDs are translated into strings.

repadmin syncall

Synchronizes a specified directory server with all replication partners. This command contains several subcommands, which are described below.

noteNote
By default, if no directory partition is provided in the namingcontext parameter, the command performs its operations on the configuration directory partition.

Syntax

repadmin /syncall dsa [NamingContext] [Flags]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

NamingContext
Specifies the distinguished name of the directory partition.

Flags
Performs specific actions during the replication, as indicated in the following table.

 

Flag Description

/a

Abort if any server is unavailable.

/A

Synchronize all directory partitions that are held on the directory server represented by dsa.

/d

Identify servers by distinguished name (rather than GUID DNS) in messages.

/e

Synchronize the directory partition across all sites. (The default behavior is to synchronize the directory partition only in the site in which the directory server represented by dsa resides.)

/h

Display help for repadmin /syncall.

/i

Iterate indefinitely.

/I

Perform repadmin /showrepl on each directory server pair in the path, rather than performing synchronization.

/j

Synchronize adjacent directory servers only.

/p

Pause for possible user abort after every message.

/P

Push changes outward from the directory server that is represented by dsa. (The default behavior of the command is to pull, rather than to push, changes.)

/q

Run in quiet mode; suppress callback messages.

/Q

Run in very quiet mode; report fatal errors only.

/s

Perform a topology analysis and generate messages, but do not synchronize the directory partition.

/S

Skip initial directory server response checking, and assume that all directory servers are available.

repadmin viewlist

Displays a list of directory servers.

Syntax

repadmin /viewlist [dsa] [OBJ_LIST]

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

OBJ_LIST
Accepts a distinguished name or a special keyword that expands into a distinguished name. The keywords include the following: Ncobj:config:; Ncobj:schema:; Ncobj:domain: This keyword is the domain partition distinguished name of the home server; and, Dsaobj: This keyword is the NTDS settings object of the home server.

repadmin writespn

Updates the service principal names (SPNs) in Active Directory.

noteNote
This command does not create SPNs in ADAM. However, ADAM setup may generate scripts that utilize this command for writing SPNs for ADAM instances into Active Directory. For more information, see Administering ADAM service principal names.

Syntax

repadmin /writespn [dsa] {add|replace|delete} accountDN SPN

Parameters

dsa
Specifies a directory server. For details about the dsa parameter, see General parameters.

Formatting legend

 

Format Meaning

Italic

Information that the user must supply

Bold

Elements that the user must type exactly as shown

Ellipsis (...)

Parameter that can be repeated several times in a command line

Between brackets ([])

Optional items

Between braces ({}); choices separated by pipe (|). Example: {even|odd}

Set of choices from which the user must choose only one

Courier font

Code or program output

Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft. All rights reserved.