Resetting trust relationship between client pc and DC

Toggle sidebar Toggle sidebar
KB

KB

Diamond Member
Nov 8, 1999
5,406
389
126
Do you mean joining the PC into the domain? Nope, this has to be done on the PC.
 
Rubycon

Rubycon

Madame President
Aug 10, 2005
17,768
485
126
Originally posted by: KB
Do you mean joining the PC into the domain? Nope, this has to be done on the PC.
Click to expand...

No. PC is a domain member but its trust relationship can be broken when restoring an Acronis image, for example.

Normally I just disjoin and rejoin to re-establish it and was looking for a way to do it from the domain controller.
 
J

jparnell

Member
Oct 12, 2004
36
0
0
Good question - ive only ever done this from the client by moving back to a workgroup and then rejoining the domain.

Can anyone explain what the reset computer account options in AD Users & Computers does? Ive never found a use for it.
 
RebateMonger

RebateMonger

Elite Member
Dec 24, 2005
11,586
0
0
Originally posted by: jparnell
Can anyone explain what the reset computer account options in AD Users & Computers does? Ive never found a use for it.
Click to expand...
Microsoft KB: Resetting computer accounts in Windows

It appears that you STILL have to re-join the PC to the Domain, though, so I'm not sure what the advantage is. Maybe I'm missing something? This KB seems to imply that some of the non-GUI methods might not require a re-join, though?
 
S

spikespiegal

Golden Member
Oct 10, 2005
1,219
9
76
PC is a domain member but its trust relationship can be broken when restoring an Acronis image, for example.
Click to expand...

Please tell me you aren't building images with the box already a Domain / AD member.
 
RebateMonger

RebateMonger

Elite Member
Dec 24, 2005
11,586
0
0
Originally posted by: spikespiegal
Please tell me you aren't building images with the box already a Domain / AD member.
Click to expand...
If you are trying to keep ongoing backups of client PCs, there's not much choice. Some desktop users have lots of added applications, some with complex setups, so you need to restore the latest image.
 
M

mooseracing

Golden Member
Mar 9, 2006
1,711
0
0
I only delete PC's from AD if there is a conflict, ie renamed PC and someone forgot and then made a dup. But then sometimes they need to be moved to workgroup then back to domain. I don't know of any other way.

And for the image thing we build new images with each new model of pc because of HAL issues. We configure them just enough tto deploy without joining the domain. When deployed we run a SID changing tool then join the domain. for people with alot of files, we clone their drives, put a fresh image on. Then copy their cloned drive either on the network or local. Then they can access all their files and add them as they want. I'm using Acronis but it allows you to look at the backup like its a giant folder so it's easy for users to get their files.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom