How to Get a List of Servers in a Domain

Active Directory (AD) environments often require administrators to pinpoint all servers within a domain. This information is essential for effective management, troubleshooting, and auditing. In this article, we’ll explore different ways to gather a list of servers in an Active Directory domain using built-in tools and PowerShell scripts.

Why List Servers in a Domain?

Gaining insight into the servers within your domain is essential for

• Inventory Management: Maintaining an inventory of all Active Directory servers.
• Troubleshooting Issues: Identifying servers that handle critical roles like Domain Controller (DC), DNS or file sharing.
• Security Audits: Making sure all servers align with organizational policies.

Methods to List All Servers in an Active Directory Domain

1. Using Active Directory Users and Computers (GUI)

For those who like a visual approach, the GUI method is the simplest for administrators.

1. To open Active Directory Users and Computers (ADUC):
   • Press Win + R, type in dsa.msc, and hit Enter.
2. Navigate to the Computers or Domain Controllers organizational unit (OU).
3. Check out the list of servers in the selected OU.
   • Use the Find feature to look for specific server types.

2. Using PowerShell

PowerShell is a quick and flexible way to get a list of all servers.

Prerequisites:

• Make sure the Active Directory module is installed (Install-WindowsFeature RSAT-AD-PowerShell).
• Run PowerShell as an administrator.

Commands to List Servers:

List All Computers in the Domain:

Get-ADComputer -Filter {OperatingSystem -like "*Server*"} -Property Name, OperatingSystem | Select-Object Name, OperatingSystem

This command fetches all servers in the domain by filtering for computers with operating systems that include "Server".

List Only Domain Controllers:

Get-ADDomainController -Filter * | Select-Object HostName, Site

This command gives you a list of all Domain Controllers, along with their hostnames and sites.

Export the Server List to a CSV File:

Get-ADComputer -Filter {OperatingSystem -like "*Server*"} -Property Name, OperatingSystem | Select-Object Name, OperatingSystem | Export-Csv -Path "C:\\ServerList.csv" -NoTypeInformation

This saves the server list to a CSV file for further analysis.

3. Using Command Prompt (Net Commands)

To get a List of Domain Controllers, you can use the following command:

nltest /dclist:<YourDomainName>

Just swap out <YourDomainName> with the name of your domain, and you’ll see all the Domain Controllers listed.

If you want to List All Computers in the Domain, try this command:

dsquery computer -o rdn

This will show you all the computers in the domain, including servers.

4. Using Active Directory Sites and Services

This handy tool gives you detailed insights into the servers within your domain and their roles.

1. To open Active Directory Sites and Services:
   • Press Win + R, type in dssite.msc, and hit Enter.
2. Expand the Sites section to see all servers, including Domain Controllers and Global Catalog servers, organized by site.

Best Practices for Managing Domain Server Lists

1. Regular Auditing: Make it a habit to review the list regularly to spot any unauthorized or outdated servers.
2. Maintain Documentation: Keep an up-to-date inventory of all servers, their roles and where they’re located.
3. Automate Reports: Set up PowerShell scripts to generate and email server lists on a regular basis.
4. Implement Access Controls: Limit access to server information to prevent any misuse.

Conclusion

Keeping track of servers in an Active Directory domain is crucial for smooth IT management. By using tools like PowerShell scripts, AD utilities and command-line commands, you can easily list all servers and keep your inventory current. Regularly checking this list helps ensure a secure and well-organized domain environment.