Limit dynamic RPC port range on Windows Server

Active Directory, DHCP, Group Policy, Replication, Trusts, Windows 7, Windows Networking, Windows Server 2003, Windows Server 2008 R2, Windows XP,

RPC by default can grab any dynamic port above 1024.  Security sometimes may ask you to limit that to a much narrower range.  A the minimum you should have about 100-200 ports available for RPC communication. Here is the registry setting: HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc Ports: REG_MULTI_SZ: 5000-5100 PortsInternetAvailable: REG_SZ: Y UseInternetPorts: REG_SZ: Y   Full MS KB

A quick way to verify ldap functionality over a domain trust

Active Directory, Trusts, Windows Server 2003, Windows Server 2008 R2,

Assume a trust is setup between Domain Y and Domain X From the Domain Y DC issue the following command ldifde -f output.ldf -s {FQDN of DCx} -b {user account} {domain}  {password}   Connecting to “FQDN of DCx” Logging in as “user account” in domain “domain” using SSPI Exporting directory to file output.ldf Searching for entries…

Read More