Re: Computer Account Group Membership
- From: "Paul Bergson [MVP-DS]" <pbergson@xxxxxxxxxxxxxxxxx>
- Date: Tue, 18 Dec 2007 07:52:43 -0600
I don't know how waiting seven days is going to help as far as I know the
machine has authenticated to the domain and until it re-authenticates
(Reboot) I don't see how it can change its group membership token. The only
way I am aware of is a reboot.
--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.
"BenP" <BenP@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:90BB3F45-59FC-46AF-B57F-FF83C37B39CC@xxxxxxxxxxxxxxxx
I am using computer account 'filter' groups to apply policy.
I add a computer account to the the group. I then have to reboot or wait 7
days (renewable kerberos tickets) for the membership and policy to apply.
How can I force this to happen without rebooting, I have tried variations
of
purging kerberos tickets and nltest and netdom to reset the secure channel
or
cycle the password but this doesnt seem to do it.
Rgds
.
- Follow-Ups:
- Re: Computer Account Group Membership
- From: BenP
- Re: Computer Account Group Membership
- Prev by Date: Re: Change local Admin password remtley over vpn
- Next by Date: RE: DNS as it relates to DNS
- Previous by thread: DNS as it relates to DNS
- Next by thread: Re: Computer Account Group Membership
- Index(es):
Relevant Pages
|
Loading
