Douglas, There are some registry settings that turn of password changes on the machine. This means that since the machine password is always the same you can simply reinstate the image and it will still be part of the domain. Not sure of the keys though, will check at work today.
When we first installed VMWARE (great product for testing upgrades) we had lots of snapshots, then the password changed on the workstation and we had to reconnect each snapshot to the domain. Each time you swapped to a new snapshot, you had to re-add it to the domain. A real pain so we scrapped the lot, started again and disabled password changing. Of course there are some security concerns, since someone could take an image, reinstate it in 6 months time and be automatically part of the domain, but in our organisation that is not a concern. Alan Cuthbertson Policy Management Software:- http://www.sysprosoft.com/index.php?ref=activedir&f=pol_summary.shtml ADM Template Editor:- http://www.sysprosoft.com/index.php?ref=activedir&f=adm_summary.shtml Policy Log Reporter(Free) http://www.sysprosoft.com/index.php?ref=activedir&f=policyreporter.shtml ----- Original Message ----- From: "Al Garrett" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Tuesday, June 07, 2005 2:07 AM Subject: RE: [ActiveDir] OT: Cloned machine domain membership We've had issues with reimaged machines and the 30-day secure channel machine password. A machine reimaged with an old image has an old password. The only solution after imaging seems to be remove from the domain and re-add. Since I'm the network side vs. the user machine side, I have the luxury of telling the techs that it's their problem to fix. I don't know if they found a solution but I'll check around and see if they solved it. -----Original Message----- From: Douglas M. Long [mailto:[EMAIL PROTECTED] Sent: Monday, June 06, 2005 8:32 AM To: [email protected] Subject: [ActiveDir] OT: Cloned machine domain membership I am trying to figure out the best way to re-image our labs (XP only) without any interaction. Currently we are using Ghost 7.5, and it will add the machine account to the domain, but doesn't actually join the machine to the domain. This would be fine if the machines only needed re-imaged twice a year, but at times they need re-imaged weekly. Any suggestions on a way to do this with what we have? Other suggestions? List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
