Re: Joining imaged workstations with dup SIDs to AD. Effects?
- From: "Paul Bergson" <pbbergs@xxxxxxxxxxxxxx>
- Date: Tue, 9 Dec 2008 07:24:45 -0600
Machines with duplicate sid's in a domain environment (on most machines) won't create an issue, but I would suggest you run sysprep or in the current predicament you are in I would run newsid on the existing machines. Duplicate sid's in a workgroup environment will create problems since the domain part of the sid doesn't exist and security is messed up. Read the link below to get complete details and to download the executable.
In the future I would suggest you building a sysprep image
http://technet.microsoft.com/en-us/sysinternals/bb897418.aspx
The loss of access to the shares is probably related to workgroup style connections. It sounds like you have found the solution, so you should roll with it.
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup This posting is provided "AS IS" with no warranties, and confers no rights.
"Rich" <spam@xxxxxxxxxx> wrote in message news:F91ED391-B5A6-44E3-AA9C-07324485B42C@xxxxxxxxxxxxxxxx
I have this issue where workstations appear to not be properly joined to the domain. They were at some point working but eventually they stopped running logon scripts or cannot map shares. That is because we replaced domain controllers and file servers which at that point they cannot access the shares so they cannot map drives, run logon scripts or get GPOs. Rejoining them to the domain fixes the issue but need to find the root cause. So far the only thing I have found in common is that they all have the same SIDs from the image when they were put in place. So my question is what is the known affects of joining workstations to AD that have been imaged but not syspreped or newsid ran on them? Thanks.
.
- Follow-Ups:
- References:
- Prev by Date: Re: Unable to join AD domain from DMZ network
- Next by Date: Re: azameDisaster recovery of domain after an actual disaster?
- Previous by thread: Re: Joining imaged workstations with dup SIDs to AD. Effects?
- Next by thread: Re: Joining imaged workstations with dup SIDs to AD. Effects?
- Index(es):
Relevant Pages
|
