Solved

PutEx - add\remove or just replace

Posted on 2010-09-17
1
977 Views
Last Modified: 2012-05-10
I'm writing some scripts that will update some distribution groups.  In these scripts I'm generating an array that has all the DN's of the correct list of members and then comparing that with the current membership of the group.  Some of these groups are VERY large, as in well over 1,500 members.  The goal being to make the group membership match the 'correct' list that I generate originally.

My question is with PutEx and the efficiency from an Active Directory perspective with regards to using the add\remove operations of PutEx (3 and 4) vs. just replacing the entire membership (2).

Is there such a big different in efficiency (and perhaps replication) if I'm editing large lists where I should use the add\remove operations vs. just using replace?
0
Comment
Question by:evetsleep
1 Comment
 
LVL 70

Accepted Solution

by:
Chris Dent earned 500 total points
ID: 33723363

Depending on the functional level of your forest (at least 2003), and the operational level of the group (not all groups have this enabled, depends when the group was created). But in theory, PutEx 3 / 4 should be far more efficient than replacing the entire list.

This is making a few assumptions about the efficiency of LVR (Linked Value Replication) when the majority of the contents do not change, but it's about the only aspect that's going to come into play here.

If your functional level is lower then the entire member attribute will replicate regardless of the number of changes. If LVR is in operation it should only replicate the change to the attribute (not the entire attribute).

HTH

Chris
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Synchronize a new Active Directory domain with an existing Office 365 tenant
A procedure for exporting installed hotfix details of remote computers using powershell
A company’s greatest vulnerability is their email. CEO fraud, ransomware and spear phishing attacks are the no1 threat to a company’s security. Cybercrime is responsible for the largest loss of money to companies today with losses projected to r…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

914 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now