<div>
<div class="content wysiwyg-content">
We have a AD forest that covers 200+ sites, 24 child domains attached to a root. I have been handed the rather daunting task of auditing every site for machines which do not authenticate through AD. I need to cover both workgroups and 'illegal' domains. My first try was to locate Wins servers and check for all entries of type Workgroup or Domain and compare them to the approved list, but this is fairly painful in terms of time required.<br />
<br />
Has anybody got any thoughts on automating this? Maybe using scripting to enumerate all Wins servers in the forest, then another to interrogate the servers for the required infomation about the workgroups/domains.<br />
<br />
Any help will be greatly appreciated<br />
<br />
David
</div>
</div>


We have a AD forest that covers 200+ sites, 24 child domains attached to a root. I have been handed the rather daunting task of auditing every site for machines which do not authenticate through AD. I need to cover both workgroups and 'illegal' domains. My first try was to locate Wins servers and check for all entries of type Workgroup or Domain and compare them to the approved list, but this is fairly painful in terms of time required.

Has anybody got any thoughts on automating this? Maybe using scripting to enumerate all Wins servers in the forest, then another to interrogate the servers for the required infomation about the workgroups/domains.

Any help will be greatly appreciated

David

How to enumerate all domains and workgroups in an enterprise

Windows 2000 is an operating system for use on both client and server computers. It is the successor to Windows NT 4.0, and is the last version of Microsoft Windows to display the "Windows NT" designation. Four editions of Windows 2000 were released (Professional, Server, Advanced Server, and Datacenter Server) that shared a core set of features, including many system utilities such as the Microsoft Management Console. All versions of the operating system support NTFS 3.0, Encrypting File System, as well as basic and dynamic disk storage. The Windows 2000 Server family includes support for Active Directory services, Distributed File System and fault-redundant storage volumes.