how can I join clients to new domain without touching the workstat

Discussion in 'Server Migration' started by mjerikboo777, Feb 11, 2005.

  1. mjerikboo777

    mjerikboo777 Guest

    We are planning a 5 site one weekend NT to 2K3AD migration and my boss wants
    us to be able to do it without touching the enduser workstations. Does
    anyone have a script or know of a way to do this from my admin workstation or
    DC??
     
    mjerikboo777, Feb 11, 2005
    #1
    1. Advertisements

  2. Hi,

    We may use the netdom command line to do the join domain action.

    Here is the full syntax of the Netdom join:

    NETDOM JOIN

    Joins a workstation or member server to a domain. The act of joining a
    computer to a domain creates an account for the computer on the domain, if
    it does not already exist.

    Syntax
    NetDom join Computer {/d: | /domain:}Domain [/ou:OUPath] [{/ud: |
    /userd:}[Domain\]User [{/pd: | /passwordd:}{Password|*}]] [{/uo: |
    /usero}User [{/po: | /passwordo}{Password|*}] [/reboot[:Delay]] [/help | /?]

    Parameters
    Note

    When joining a computer running Windows NT 4.0 or earlier to the domain,
    the operation is not transacted. This means that a failure during the
    operation might leave the computer in an undetermined state with respect to
    the domain to which it was meant to join.
    Computer
    Specifies the name of the computer to be joined.

    {/d: | /domain:}Domain
    Specifies the domain to which the account is joined. If this parameter is
    omitted, then the domain that the current computer belongs to is used.

    /ou:OUPath
    Specifies the organizational unit (OU) under which to create the account.
    This must be the full RFC 1779 distinguished name of the OU. If omitted,
    the account is created under the default OU for machine objects for that
    domain.

    {/ud: | /userd:}[Domain\]User
    Specifies the user account that makes the connection with the domain
    specified in the /d or /domain parameter. If this parameter is omitted, the
    current user account is used.

    {/pd: | /passwordd:}{Password|*}
    Specifies the password of the user account that is specified in the /ud or
    /userd parameter. Use the wildcard character (*) to be prompted for the
    password.

    {/uo: | /usero}User
    Specifies the user account that makes the connection with the computer to
    be joined. If this parameter is omitted, the current user account is used.

    {/po: | /passwordo}{Password|*}
    Specifies the password of the user account that is specified in the /uo or
    /usero parameter. Use the wildcard character (*) to be prompted for the
    password.

    /reboot[:Delay]
    Specifies that the computer shuts down and automatically reboots after the
    join has completed. The Delay value is the number of seconds before
    automatic shutdown occurs. The default Delay value is 20 seconds.

    {/help | /?}
    Displays command-line usage for the join operation.
    Sample Usage
    netdom join /d:reskit.ms.com mywksta

    -----------------------

    To do it, you need the domain administrator right and the local
    administrator right of the workstation you want to add.

    For example, you want to join a machine mymachine to a domain mydomain.
    The domain administrator's password is 123. The local administrator's
    password of the machine mymachine is 456.

    Then, we may run the command from any machine that can contact the DC in
    the domain like below:

    netdom join mymachine /d:mydomain /ud:administrator /pd:123
    /uo:administrator /up:456 /reboot:20

    NOTE: You may replace the /pd:123 with /pd:* to prompt for a password. The
    same to the /up:456.
    The /reboot:20 here refers to reboot the client machine after 20 seconds
    after the command is completed.

    HTH.

    Best Regards,

    Jeff Qiu
    Microsoft Online Partner Support
    MCSE 2k/2k3, MCSA 2k/2k3, MCDBA
    Get Secure! - www.microsoft.com/security

    =====================================================
    When responding to posts, please "Reply to Group" via your newsreader so
    that others may learn and benefit from your issue.
    =====================================================
    This posting is provided "AS IS" with no warranties, and confers no rights.


    --------------------
     
    Jeff Qiu [MSFT], Feb 14, 2005
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.