Active Directory – Check communication (portqueryUI)

Overview

With network segmentation, domain controllers often have to configured on a firewall. How do you test, verify and document the functioniality or errors?

You often have to run tests, repeat them and document them. I like to use the Microsoft port query tool for this and add the GUI – graphical user interface – for better visibility.

The tool is available from Microsoft and allows various functions to be executed and run against DNS names of systems or IP addresses.

Download and Installation of portqueryUI

To do this, we download the programme directly from Microsoft via this link or search for ‘portqueryUI’ in the search engine of our choice.

Execute the downloaded file and accept the licence agreement. Then select the path for unpacking the files. In the example, I unzip this into my user directory under Documents on the test server.

portqueryui entpacken der Installationsdateien
portqueryui unzip of the installer files

Configuration

Then set the programme so that the domain controller to be tested is set as the destination IP and select the Domain and Trusts service.

The tool then automatically checks all relevant network ports to the domain controller and reports if certain communication does not work.

PortqueryUI Testen der Verbindung zum Domain Controller
Test the connection to a Domain Controller

Summary on how to check Active Directory communication with Port Query

For me, an unjustly forgotten ‘treasure’ of a tool. I still like to use it and will do so again and again. For more tools to check connectivity take a look at WinMTR here.

Avatar for Andreas Hartig
Andreas Hartig - MVP - Cloud and Datacenter Management, Microsoft Azure

Related Posts

WAU Happy Dragons crazy about 110 percent security

Schedule Winget Auto Updates for operational usage

Deploying Winget Auto Updates (WAU) gives you a functional update baseline, for full functionality we need to configure more to get ready for production. If servers query the Winget repository…

Read more
WAU Happy Dragons about improved security

Centralized Software Patch Management: Deploying Winget Auto Updates (WAU) via Active Directory GPO

Deploying Winget Auto Updates for Software Patch Management for managing third-party software updates across an IT infrastructure typically requires expensive enterprise solutions. This article provides a technical guide on how…

Read more
Gemini Generated Image 6s2cz6s2cz6s2cz6

Active Directory Planning Tool: Mapping Structures and Delegations with SMAD-X

Using an Active Directory Planning Tool is key for understanding complex Active Directory environments and often requires more than what traditional management consoles can provide. While tools such as Active…

Read more
Dragons looking at AccountLockout Tool

AD Account Lockout (Free Tool)

The AD Account Lockout tool is free and very valuable in troubleshooting account lockouts in Active Directory. This is a task as old as the directory service itself. Even in…

Read more
IT Architect doing Active Directory Visualization

Active Directory Visualization (Free Tools)

Designing and documenting Active Directory (AD) structures is always a long and complex exercise. Historically, this required either building full lab environments or settling for static Visio diagrams that became…

Read more
IT Operations Drache looking at Event Logs

Modern Windows Event Viewer – EventLogExpert

The project Windows Event Viewer – EventLogExpert provides a modern open-source toolset that fundamentally improves the way we interact with Windows Event Logs. Since troubleshooting .evtx files is often a…

Read more