I Need To Make A Change With My IT Support! Call (225) 706-8414

Scan an Active Directory Network Using Network Detective

You want to document a entire network that is running Active Directory using Network Detective.


In the case where a site is using Active Directory and you need to document as much as possible, you can do this from an AD DC.

NOTE: For best results, run this on a DC as a Domain Admin.

  1. Log into the target DC as a domain admin.
  2. Open a web browser and download the ND agent. (For Puryear, it’s at http://puryear.wpengine.com/nd .)
  3. Download and run the program.
  4. The program will want to extract. Click Unzip.
  5. After unzipping, the program will run after a few moments. You may get a complaint about not running as an Admin. If so, you should run this under a Domain Admin account!
  6. The Scan Type screen will appear. Choose Network Data Collector and Security Data Collector. The “Perform Network Scan” should be enabled by default now. Click Next.
  7. Enter the Domain Admin information and verify the DC is correct. Otherwise this scan will return bad results.
  8. The default domain is usually fine. Click Next.
  9. Enter all of the public DNS names for the WHOIS test. Most customers have several!
  10. For the IP Ranges, you’ll want to usually accept the default. That said, if the network has multiple subnets, like the one shown, then you can add an IP in that subnet to your computer and then include that IP range in the scan. That said, unless you are absolutely sure this is safe, then just use the default. Click Next.
  11. In the SNMP information screen, the default of ‘public’ is usually fine unless you know there are additional SNMP community strings to use. Click Next.
  12. In the MBSA section, Network Detective will want you to download and install MBSA on the DC before proceeding. You could skip this, but then you lose a lot of the benefit of using Network Detective for a network scan. Unless it’s just a bad idea, download and install MBSA, click Refresh, select Run MBSA and Patch Analysis, and then click Next.
  13. Leave the defaults alone for the User Control Tests. Click Next.
  14. For the results file, the default is the Desktop. That’s fine. Click Start.

For a network scan with MBSA and patch analysis, it could take between 5 minutes and half an hour. Be patient.




Concerned About Cyber Attacks?


Want to Migrate to the Cloud?

Office 365

Ready to Experience Microsoft Office 365?

Want the latest IT news directly in your inbox? Subscribe now!