Deployment Solution

 View Only

  • 1.  Offline Domain Join (Djoin.exe) For Computers That May Or May Not Exist In Active Directory

    Posted Feb 07, 2011 07:08 PM

    Hello,

    We are currently using DS 6.9 SP4 to build our new Windows 7 sysprepped image.

    I was just wondering if anyone uses Djoin.exe for completing offline domain joins when they build their image? We've got some VBScript to do it, but it requires a reboot and is a bit messy to be honest.

    I just had a quick question (and please forgive me if I'm being stupid here - this is all a bit new):

    What happens if you do not know if the computer will or will not exist in Active Directory? That is, you can use the /provision command to generate the computer account metadata and then insert it into the unattend.xml file, but what if the computer already exists? The /provision command won't work and therefore your XML file will be invalid. You could use Djoin.exe without the /provision command, but then the unnatend.xml will be invalid for computers that are not already part of the domain.
     
    I ask this in terms of re-imaging existing machines. How can we have a single XML file for both scenarios (so we don't have to check if the computer exists or not)? 
     
    Thanks for your help.
     
    Rhys


  • 2.  RE: Offline Domain Join (Djoin.exe) For Computers That May Or May Not Exist In Active Directory

    Posted Feb 08, 2011 10:36 AM

    I take it your computers aren't able to talk to your domain controllers? Just a glancing at the write-up over at technet I'd assume that'd be the best reason to use it. Otherwise, if you include domain admin credentials in your sysprep.xml file then it should join in the specialize pass. We're using token replacement to fill everything and with the tool ImageInvoker (user developed tool from connect) it makes setting up new computers a breeze. Below is a copy of our sysprep unattended join info.

     

     

    <component name="Microsoft-Windows-UnattendedJoin" processorArchitecture="x86publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
    - <Identification>
    - <Credentials>
      <Domain>"domain"</Domain>
      <Password>"password"</Password>
      <Username>"domain user"</Username>
      </Credentials>
      <JoinDomain>"domain"</JoinDomain>
      <MachineObjectOU>%LDAPDOMAINOU%</MachineObjectOU>
      </Identification>
      </component>


  • 3.  RE: Offline Domain Join (Djoin.exe) For Computers That May Or May Not Exist In Active Directory

    Posted Feb 10, 2011 06:33 PM

    I've had a look at this and figured it would be a nice and easy way to do it, but.. we've had some issues with it. That is, sometimes the computers join and sometimes they don't (depending on whether they are in AD and what OU the exist in ect ect) - it was just a little unreliable in our enviroment.

    So we are just playing around with some VBScript (which allows for more error handling), but it's a bit messy and requires a reboot. I guess I was just curious about how to implement Djoin.exe. I was just rather baffled that the command can't figure out itself if the computer exists or not.

    Thanks for your suggestion though!