Skip to main content

How to change what is stored in the Global Catalog

The Global Catalog (GC) is used for searching objects in other domains in your forest.  Also some applications, like Exchange, use the Global Catalog to help provide their services.  The Global Catalog contains a Partial Attribute Set (PAS) of all the objects in a domain that users generally search for.  The GC is configurable in that you can choose to add properties of objects to be replicated in the GC.  Below is the step by step procedure to do so.

Step 1 – Locate the Schema Operations Master
You should perform this step on the Domain Controller that holds the Schema Operations Master Role.  It is true that Windows Domain Controllers are multi-master.  This means that a change on one will replicate to all.  However, there are certain functionalities that can only be performed by one DC at a time.  To get a list of the current FSMO (Flexible Single Master Operation) role holders:

Click Start.

Type CMD and press Enter.

Type netdom query fsmo and press Enter.  You will get a list like the one below:
image

Notice that the Schema Master is being held by a Domain Controllers called MCT-1.

Step 2 – Register the Schema Snap-in
The Schema Snap-in is one, if not the least used of all the Active Directory Snap-ins.  Generally you only modify the schema when upgrading a domain or adding a major product like Exchange.  These products modify the Schema for you.  In this situation, we need to access it for manual modifications.  Just a word of caution, improperly modifying your Schema can cause problems.  Be careful.

Log into the Domain Controller holding the Schema Master role.
Click Start.

Type CMD and press Enter.

Type regsvr32 schmmgmt.dll and press Enter.
This will register the Active Directory Schema


Step 3 – Specify the properties that you want to be a part of the PAS.

On the Schema Master Domain Contoller, click Start.

Type MMC and press Enter.

Click File \ Add-Remove Snap-ins…

Click Active Directory Schema and then Add.

Click OK.

Expand Active Directory Schema (DomainName).

Click Attributes.

Locate the attribute that you want to replicate in the PAS.  For this example, we will select Title

Double click Title to open its properties.
image

Check Replicate this attribute to the Global Catalog.

Click OK.

Once replication has completed, your users will be able to search by title for objects in other domains inside your forest.  Remember, this is a forest wide replication, it may take some time before it is in effect in all domains.

Comments

Popular posts from this blog

Adding a Comment to a GPO with PowerShell

As I'm writing this article, I'm also writing a customization for a PowerShell course I'm teaching next week in Phoenix.  This customization deals with Group Policy and PowerShell.  For those of you who attend my classes may already know this, but I sit their and try to ask the questions to myself that others may ask as I present the material.  I finished up my customization a few hours ago and then I realized that I did not add in how to put a comment on a GPO.  This is a feature that many Group Policy Administrators may not be aware of. This past summer I attended a presentation at TechEd on Group Policy.  One organization in the crowd had over 5,000 Group Policies.  In an environment like that, the comment section can be priceless.  I always like to write in the comment section why I created the policy so I know its purpose next week after I've completed 50 other tasks and can't remember what I did 5 minutes ago. In the Group Policy module for PowerShell V3, th

Return duplicate values from a collection with PowerShell

If you have a collection of objects and you want to remove any duplicate items, it is fairly simple. # Create a collection with duplicate values $Set1 = 1 , 1 , 2 , 2 , 3 , 4 , 5 , 6 , 7 , 1 , 2   # Remove the duplicate values. $Set1 | Select-Object -Unique 1 2 3 4 5 6 7 What if you want only the duplicate values and nothing else? # Create a collection with duplicate values $Set1 = 1 , 1 , 2 , 2 , 3 , 4 , 5 , 6 , 7 , 1 , 2   #Create a second collection with duplicate values removed. $Set2 = $Set1 | Select-Object -Unique   # Return only the duplicate values. ( Compare-Object -ReferenceObject $Set2 -DifferenceObject $Set1 ) . InputObject | Select-Object – Unique 1 2 This works with objects as well as numbers.  The first command creates a collection with 2 duplicates of both 1 and 2.   The second command creates another collection with the duplicates filtered out.  The Compare-Object cmdlet will first find items that are diffe

How to list all the AD LDS instances on a server

AD LDS allows you to provide directory services to applications that are free of the confines of Active Directory.  To list all the AD LDS instances on a server, follow this procedure: Log into the server in question Open a command prompt. Type dsdbutil and press Enter Type List Instances and press Enter . You will receive a list of the instance name, both the LDAP and SSL port numbers, the location of the database, and its status.