How to automate Ntdsutil.exe using a script

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

This article was previously published under Q243267
Ntdsutil.exe is a command-line utility that enterprise and domain administrators can use to manage and repair Active Directory. It is a menu-driven tool designed for interactive use, but you can also run it by using scripting and automation.
To automate Ntdsutil, specify the commands you want to run on the command line as parameters to the Ntdsutil utility. To make parsing easier, each command or parameter is separated by a blank space, and multiple string parameters are enclosed in quotation marks.

For example, the following command demonstrates how Ntdsutil can be controlled through a script to return the list roles held by a domain controller:
c:\ntdsutil r "sel o t" c "co t s servername" q "l r f c s" q q q
Note that the letters in each of the parameters are abbreviated forms of the actual commands found in the Ntdsutil utility. You can obtain the same result by using the unabbreviated form of each command, as in the following example:
c:\ntdsutil roles "select operation target" "connections" "connect to server servername" quit "list roles for connected server" quit quit quit

Article ID: 243267 - Last Review: 03/01/2007 23:13:19 - Revision: 3.3

Microsoft Windows Server 2003, Standard Edition (32-bit x86), Microsoft Windows Server 2003, Enterprise Edition (32-bit x86), Microsoft Windows Server 2003, Datacenter Edition (32-bit x86), Microsoft Windows 2000 Datacenter Server, Microsoft Windows 2000 Advanced Server, Microsoft Windows 2000 Server

  • kbhowto KB243267