locked
adding computer to root domain RRS feed

  • Question

  • Hi,

    I have my user account in child domain. I need to add computers to the root domain. I think asking infrastructure team to delegate permissions on some OU for this won't be a problem. I need to know where added computer accounts will be stored. Will they be located on that OU where I have permissions to add them after joining to domain? 

    thanks

    Thursday, April 25, 2013 8:40 AM

Answers

  • Nope,by default it tries to create the computer object in the default computer cotainer even though you are delegated to certain OU. If you have configured to redirect to some other OU where you have been granted permission, you need to redirect it using redircmp tool.

    http://technet.microsoft.com/en-us/library/cc770619%28v=ws.10%29.aspx


    Awinish Vishwakarma - MVP

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    • Proposed as answer by Meinolf Weber Friday, April 26, 2013 6:36 AM
    • Marked as answer by Bennie Chen Monday, April 29, 2013 8:41 AM
    Friday, April 26, 2013 4:47 AM

All replies

  • Hi,

    with Powershell or netdom it is possible give to ou

    If you join the computer with the "Computer Name Change"  you have to redirect computer http://support.microsoft.com/kb/324949 

    NETDOM JOIN machine /Domain:domain [/OU:ou path] [/UserD:user]
    [/PasswordD:[password | *]]
    [UserO:user] [/PasswordO:[password | *]]
    [/REBoot[:Time in seconds]]

    NETDOM JOIN Joins a workstation or member server to the domain.

    machine is the name of the workstation or member server to be joined

    /Domain Specifies the domain which the machine should join

    /UserD User account used to make the connection with the domain
    specified by the /Domain argument

    /PasswordD Password of the user account specified by /UserD. A * means
    to prompt for the password

    /UserO User account used to make the connection with the machine to
    be joined

    /PasswordO Password of the user account specified by /UserO. A * means
    to prompt for the password

    /OU Organizational unit under which to create the machine account.
    This must be a fully qualified RFC 1779 DN for the OU.
    If not specified, the account will be created under the default
    organization unit for machine objects for that domain.

    /REBoot Specifies that the machine should be shutdown and automatically
    rebooted after the Join has completed. The number of seconds
    before automatic shutdown can also be provided. Default is
    20 seconds

    When joining a downlevel (Windows NT version 4 or before) machine to the domain
    the operation is not transacted. Thus, a failure during the operation could
    leave the machine in an undetermined state with respect to the domain it is
    joined to.

    The act of joining a machine to the domain will create an account for the
    machine on the domain if it does not already exist.

    NETDOM HELP command | MORE displays Help one screen at a time.


    Philipp Halbedel

    MCP 2003,MCITP EA Server 2008,MCITP EA Windows 7,MCSA2008,MCSA2012 

    Meine Antwort war hilfreich? ich freu mich über eine Bewertung. If my answer was helpful, I'm glad about a rating! 

    I do not represent the organisation I work for, all the opinions expressed here are my own.

    Thursday, April 25, 2013 8:51 AM
  • my question is, if they will grand me permissions to join server to some OU will it cause that all computer accounts will go to that same OU even if Administrator will join another server to domain? 
    thanks
    • Edited by jori5 Thursday, April 25, 2013 3:55 PM
    Thursday, April 25, 2013 3:54 PM
  • Nope,by default it tries to create the computer object in the default computer cotainer even though you are delegated to certain OU. If you have configured to redirect to some other OU where you have been granted permission, you need to redirect it using redircmp tool.

    http://technet.microsoft.com/en-us/library/cc770619%28v=ws.10%29.aspx


    Awinish Vishwakarma - MVP

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    • Proposed as answer by Meinolf Weber Friday, April 26, 2013 6:36 AM
    • Marked as answer by Bennie Chen Monday, April 29, 2013 8:41 AM
    Friday, April 26, 2013 4:47 AM