I have been tasked with decommissioning numerous 2003 AD servers now that our new 2008 infrastructure is up and running. I need to confirm that not clients have manually configured indivual DC’s for LDAP queries. How can I determine if clients are making LDAP queries against a particular box?
One solution I have been kicking around is to perform an LDAP query from my local machine and then seeing what is logged in event viewer, then looking for similar logs. Is there any way I can make such queries?
I assumed that using AD Users and Computers to connect to a particular server should register some kind of event while I viewing AD, but I can’t see any events being created.