Funny I looked at NETDOM but I did not know it was possible to specify a DC after the domain name... ;-) Next time I should ALSO read the description and not only the argument name as it is also mentioned there... duh.. Thanks Dean Jorge
________________________________ From: [EMAIL PROTECTED] on behalf of Dean Wells Sent: Sun 9/11/2005 3:50 PM To: Send - AD mailing list Subject: RE: [ActiveDir] Restricting machine to specific DC for domain join This seems a little obvious so I may have misunderstood your scenario, nonetheless - http://support.microsoft.com/kb/266651/EN-US/ -- Dean Wells MSEtechnology * Email: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> http://msetechnology.com <http://msetechnology.com/> ________________________________ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kamlesh Parmar Sent: Saturday, September 10, 2005 12:25 PM To: [email protected] Subject: [ActiveDir] Restricting machine to specific DC for domain join Dear All, At one of the locations, firewall restricts port 139, 445 towards other locations. And we are mass migrating computers from this location to our domain. And We know that, normal 2k/XP machine when asked to join domain, will run LDAP query _ldap._tcp.dc._msdcs.domainname will go to first DC of returned from the result, and try to create account there. And if the first DC of the result, is remote DC, this attempts is thwarted by firewall, as client can't make initial connection to remote DC's IPC$ Can we do something about this, Like making sure that for DC Join process, clients go to specific DC only.? Regards, Kamlesh -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~ "Fortune and Love befriend the bold" ~~~~~~~~~~~~~~~~~~~~~~~~~~~ This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.
<<inline: winmail.dat>>
