Dear Kueh,
Thank you for your reply.
Based on this, to join a domain without user interactions, you can use the
Netdom utility (Netdom.exe) which is included in Windows 2000 Support Tools
and in the Windows 2000 resource kits.
Netdom is a command-line utility that you can use to manage Windows
domains. This utility includes options to create and move computer accounts
for Windows NT 4.0 and Windows 2000 domain members. Netdom 2.0 contains a
join command that you can use to create a computer account on any specified
Windows 2000 domain controller. Netdom 2.0 uses a new NetJoinDomain API,
which is used in conjunction with multiple-master replication on Windows
2000 domain controllers, to create security principals (user, computers and
groups) on any domain controller in a domain. When you create the computer
account on a domain controller in the same Active Directory site as the
client workstation for which the account is created, you reduce or
eliminate replication latency delays that might prevent users from logging
on to the domain immediately.
NETDOM JOIN Joins a workstation or member server to the domain.
The syntax of this join command is:
C:\>netdom help join
NETDOM JOIN <computer>/Domain:<domain> [/OU:<ou path>] [/UserD:<user>]
[/PasswordD:[<password> | *]]
[UserO:<user>] [/PasswordO:[<password> | *]]
[/reboot[:<Time in seconds>]]
For more information about the NetJoinDomain API, visit the following
Microsoft Web site:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/netmgmt/net
mgmt/netjoindomain.asp
Hope it is helpful.
Thanks and have a good day!
Regards,
Benny Fu
Microsoft Online Partner Support
Microsoft Corporation
Get Secure! –
www.microsoft.com/security
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: "KA Kueh" <
[email protected]>
| References: <
[email protected]>
<
[email protected]>
| Subject: Re: Deletion of Computers from AD ?
| Date: Sat, 26 Jul 2003 09:05:46 +0800
| Lines: 101
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
| Message-ID: <
[email protected]>
| Newsgroups: microsoft.public.win2000.setup
| NNTP-Posting-Host: 210.187.120.74
| Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP11.phx.gbl
| Xref: cpmsftngxa06.phx.gbl microsoft.public.win2000.setup:14216
| X-Tomcat-NG: microsoft.public.win2000.setup
|
| Hi Benny,
|
| Thanks for the reply. But adding the computer account manually does not
or
| not the same as joining the PC to the domain. I still need to go to every
| PC to Join to the domain before user can login. What I am looking for is
an
| easy way for PC to join the domain without user interactions. Thanks.
|
| Regards,
| Kueh.
| .
| | > Dear Kueh,
| >
| > Thank you for your posting.
| >
| > Add a Computer Account:
| >
| > To perform this procedure, you must be a member of the Account Operators
| > group, the Domain Admins group, or the Enterprise Admins group in Active
| > Directory, or you must have been delegated the appropriate authority.
As a
| > security best practice, consider using Run as to perform this procedure.
| >
| > 1. Click Start, point to Programs, point to Administrative Tools, and
| then
| > click Active Directory Users and Computers.
| >
| > 2. In the console tree, click Computers under the domain node, or click
| > the container in which you want to add the computer.
| >
| > 3. Right-click Computers or the container in which you want to add the
| > computer, point to New, and then click Computer.
| >
| > 4. Type the computer name.IMPORTANT: The Default Domain Policy settings
| > allow only members of the Domain Admins group to add a computer account
to
| > a domain. Click Change to specify a different user or group that can add
| > this computer to the domain.
| >
| > To add a computer account by using a command, type the following at a
| > command prompt, and then press ENTER
| >
| > "dsadd computer <ComputerDN>" (without the quotation marks)
| >
| > where <ComputerDN> the distinguished name of the computer you want to
add.
| > The distinguished name specifies the directory location. To view the
| > complete syntax for this command, at a command prompt, type "dsadd
| > computer /?" (without the quotation marks).
| >
| > For more detailed information, you can read the following article:
| >
| > 320187 HOW TO: Manage Computer Accounts in Active Directory in Windows
| 2000
| >
http://support.microsoft.com/?id=320187
| >
| > Hope it is helpful.
| >
| > Thanks and have a good day!
| >
| > Regards,
| >
| > Benny Fu
| > Microsoft Online Partner Support
| > Microsoft Corporation
| > Get Secure! -
www.microsoft.com/security
| >
| > This posting is provided "AS IS" with no warranties, and confers no
| rights.
| >
| > --------------------
| > | From: "KA Kueh" <
[email protected]>
| > | Subject: Deletion of Computers from AD ?
| > | Date: Fri, 25 Jul 2003 11:34:29 +0800
| > | Lines: 10
| > | X-Priority: 3
| > | X-MSMail-Priority: Normal
| > | X-Newsreader: Microsoft Outlook Express 6.00.2600.0000
| > | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
| > | Message-ID: <
[email protected]>
| > | Newsgroups: microsoft.public.win2000.setup
| > | NNTP-Posting-Host: 210.187.120.74
| > | Path: cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!TK2MSFTNGP09.phx.gbl
| > | Xref: cpmsftngxa06.phx.gbl microsoft.public.win2000.setup:14167
| > | X-Tomcat-NG: microsoft.public.win2000.setup
| > |
| > | Dear all,
| > |
| > | If computers object are deleted from the AD of a Windows 2000 domain,
| Is
| > | it possible to get it back without going to the individual PC to join
| back
| > | the domain? I am running mixed mode. Thanks.
| > |
| > | Regards,
| > | Kueh.
| > |
| > |
| > |
| >
| >
|
|
|
