I heard that theoretically we could port scan global network for TCP 3268 i.e identifying all Global Catalog Domain Controllers(DCs). So my questions are: How Global Catalog servers is correlated with total number of Active Directory Forests in an enterprise and how can I tell number of forests by identifying all Global Catalog servers? Please elaborate this method. Is there any alternative/automated/practical way to answer this question without checking network documentation and AD design documents or interviewing? Kindly answer with explanation specific to above mentioned questions.

New posts

Forums on Intune, SCCM, and Windows 11

Welcome to the forums. Register a free account today to become a member! Once signed in, you'll be able to participate on this site by adding your topics and posts, as well as connect with other members through your own private inbox!

NEW How do I determine total number of Active Directory Forests in an enterprise?

Thread starter G-ONE
Start date Sep 18, 2020
Replies 0
Views 2K
Tags

active directory domain controller

G-ONE

New Member

Sep 18, 2020

I heard that theoretically we could port scan global network for TCP 3268 i.e identifying all Global Catalog Domain Controllers(DCs). So my questions are:

How Global Catalog servers is correlated with total number of Active Directory Forests in an enterprise and how can I tell number of forests by identifying all Global Catalog servers? Please elaborate this method.
Is there any alternative/automated/practical way to answer this question without checking network documentation and AD design documents or interviewing?

Kindly answer with explanation specific to above mentioned questions.