Solved

Active Directory OU Restructuring:  Need Discovery Methods

Posted on 2014-02-20
4
141 Views
Last Modified: 2014-11-11
I am working on a new OU structure for an existing infrastructure; it will actually move all of the existing objects into a new ROOTOU OU.  I am thinking on logical ways to discover what apps/devices are making calls to specific DNs so we can reach out to the appropriate parties to change them.   If anyone knows of ways to do this the only thing I can think of is running a network monitor on my DCs for a week or so and then going through LDAP traffic.  Just testing it for a few minutes I see that it is going to create a WHOLE lot of capture data to sift through and seems like it will be overwhelming.
0
Comment
Question by:mcburn13
  • 3
4 Comments
 
LVL 4

Expert Comment

by:MMe12
Comment Utility
There is a product from Quest (now Dell Software Group) called
"Change Auditor for Active Directory Queries"
http://www.quest.com/changeauditor-for-active-directory-queries

This should be much easier than network monitoring!
0
 
LVL 1

Author Comment

by:mcburn13
Comment Utility
This looks great. I am going to keep this one on hold and report back with my findings on it...
0
 
LVL 1

Accepted Solution

by:
mcburn13 earned 0 total points
Comment Utility
Change Auditor looks good but it really doesn't give any insight into the apps- really kind of tough but it is just a matter of communicating with colleagues and letting them know the changes are happening and to re-home their apps. I know Dynamic Distribution Lists will be an issue so will prepare the messaging team or figure out a way to script the changes for them
0
 
LVL 1

Author Closing Comment

by:mcburn13
Comment Utility
no answer given- probably not really a viable way to do this
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Introduction Many times we come across a slowness or instability between two hosts, and almost always we blame the poor networking guys, just because they're an easy target.  Sometimes we forget that other factors including disk bottlenecks, CPU …
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now