Active Directory – Check communication (portqueryUI)

Overview

With network segmentation, domain controllers often have to configured on a firewall. How do you test, verify and document the functioniality or errors?

You often have to run tests, repeat them and document them. I like to use the Microsoft port query tool for this and add the GUI – graphical user interface – for better visibility.

The tool is available from Microsoft and allows various functions to be executed and run against DNS names of systems or IP addresses.

Download and Installation of portqueryUI

To do this, we download the programme directly from Microsoft via this link or search for ‘portqueryUI’ in the search engine of our choice.

Execute the downloaded file and accept the licence agreement. Then select the path for unpacking the files. In the example, I unzip this into my user directory under Documents on the test server.

portqueryui entpacken der Installationsdateien
portqueryui unzip of the installer files

Configuration

Then set the programme so that the domain controller to be tested is set as the destination IP and select the Domain and Trusts service.

The tool then automatically checks all relevant network ports to the domain controller and reports if certain communication does not work.

PortqueryUI Testen der Verbindung zum Domain Controller
Test the connection to a Domain Controller

Summary on how to check Active Directory communication with Port Query

For me, an unjustly forgotten ‘treasure’ of a tool. I still like to use it and will do so again and again. For more tools to check connectivity take a look at WinMTR here.

Spread the knowledge
Avatar for Andreas Hartig
Andreas Hartig - MVP - Cloud and Datacenter Management, Microsoft Azure

Related Posts

A dragon IT Architect in the shadowrun world using an Excel document and the Azure Quick Review Tool

Azure Quick Review 2.04 – High Level Assessments

With Azure Quick Review (azqr) you can quickly make a High Level Assessment of an “Azure Subscription” or “Resource Group”. Installation of Azure Quick Review You can download the files…

Spread the knowledge
Read more
A dragon IT Architect in the shadowrun world using Microsoft Tools like Windows LAPS to secure his datacenter, relaxing and watching a sitcom on TV

Securing Local Administrator Accounts with Windows LAPS: A Get Started Guide for Windows Server Environments

Managing local administrator accounts securely is a critical aspect of maintaining a robust and secure IT environment. With the introduction of the Windows Local Administrator Password Solution (LAPS) in newer…

Spread the knowledge
Read more
A dragon IT Architect in the shadowrun world using his notebook and keepassxc to safe the world from a virus attack

Securing Client Passwords with KeePassXC: A Consultant’s Guide to Autotyping and More

As consultants, managing multiple clients and their respective passwords can be a daunting task, especially when security is paramount. In this article, we will explore how KeePassXC, a powerful and…

Spread the knowledge
Read more
Windows Server 2025 Monitoring TCP/IP on http://hartiga.de

Windows Server 2025 – Monitoring TCP/IP

Monitoring open TCP/IP ports is crucial for maintaining the security and functionality of your Windows system. This article will guide you through using three powerful tools, netstat, powershell Get-NetTCPConnection and…

Spread the knowledge
Read more
Windows Admin using Winget

Easily manage Applications with WinGet v1.x

Microsoft has released WinGet, a package manager that is very well suited for installing and updating third-party applications. We are now installing applications with “WinGet” and learn how to manage…

Spread the knowledge
Read more
SFTP with Powershell Logo

Use SFTP with Powershell

If you want to use SFTP with Powershell to transfer files, you can do this with the Posh-SSH module. Installation of SFTP with Powershell To retrieve or copy data via…

Spread the knowledge
Read more