Share via

Repadmin /rodcpwdrepl


Applies To: Windows Server 2003, Windows Server 2008, Windows Server 2003 with SP2, Windows Server 2003 R2, Windows Server 2008 R2, Windows Server 2012, Windows Server 2003 with SP1, Windows 8

Triggers replication of passwords for the specified users from a writable Windows Server 2008 source domain controller to one or more read-only domain controllers (RODCs).

For each destination RODC, the source domain controller enforces the Password Replication Policy (PRP) before it performs the operation. If the PRP does not permit replicating the password to an RODC for a specified user, the operation for that user and RODC combination fails.

For examples of how to use this command, see Examples.


repadmin /rodcpwdrepl [DSA_LIST] <Hub DC> <User1 DN> [<User2 DN> <User3 DN>...]





Specifies the host name of a domain controller or a list of domain controllers that are separated in the list by single spaces. For detailed syntax, see Repadmin.

<Hub DC>

Specifies the writable Windows Server 2008 domain controller that enforces the PRP of the RODC.

<Usern DN>

Specifies the distinguished name of the user account whose password must be cached (prepopulated) on the RODC.


The following example triggers replication of the passwords for the user account named JaneOh from the source domain controller named source-dc01 to all RODCs that have the name prefix dest-rodc:

repadmin /rodcpwdrepl dest-rodc* source-dc01 cn=JaneOh,ou=execs,dc=contoso,dc=com

Additional references

Command-Line Syntax Key