+ Post New Thread
Results 1 to 14 of 14
O/S Deployment Thread, Active Directory + Win 7 in Technical; Hi guys, We are experimenting with FOG at the moment, alongside our WDS + MDT installation to try and speed ...
  1. #1

    Join Date
    May 2007
    Location
    London
    Posts
    221
    Thank Post
    6
    Thanked 13 Times in 11 Posts
    Rep Power
    17

    Active Directory + Win 7

    Hi guys,

    We are experimenting with FOG at the moment, alongside our WDS+MDT installation to try and speed up things such as laptops.

    FOG is working fine(ish) and is chugging along quite happily pulling/pushing images and renaming machines.

    However, it is not joining them to the domain? I have seen references to netdom which to my knowledge is not in Win7 any more - so at present is FOG capable of this, and if so, where am I going wrong with it?

    Cheers people!

  2. #2

    dhicks's Avatar
    Join Date
    Aug 2005
    Location
    Knightsbridge
    Posts
    5,647
    Thank Post
    1,256
    Thanked 781 Times in 678 Posts
    Rep Power
    236
    Quote Originally Posted by Homer View Post
    However, it is not joining them to the domain?
    Ah! I've had exactly the same problem just today, although with Windows XP. My problem turned out to be PHP's "magic quotes" feature getting in the way:

    netdom driving me insane

    This might or might not be your problem - have you specified the full admin account name, e.g. "DOMAIN\administrator" rather than just "administrator", for the domain-join task?

    --
    David Hicks

  3. #3
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    The netdom stuff isn't required anymore, the service was rewritten so it will join the domain by itself.
    This thread has most of the issues you'll encounter.

  4. #4
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    Like he said.

  5. #5

    Join Date
    May 2007
    Location
    London
    Posts
    221
    Thank Post
    6
    Thanked 13 Times in 11 Posts
    Rep Power
    17
    I think it is now down to me being a tool. How can I attempt to register the machine to the domain using FOG, manually? I think it is user/pass now but I cannot be sure, a quick Google turns error code 1326 up as a username/password fail. Magic quotes are off.

    Windows 7 based client.

    Cheers

  6. #6
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    Are you sure you are using the password encryptor and the account you are using has permissions to add the computer object to AD?

  7. #7

    Join Date
    May 2007
    Location
    London
    Posts
    221
    Thank Post
    6
    Thanked 13 Times in 11 Posts
    Rep Power
    17
    Yup and Yup! The account we are using, we use with deployment from MDT to join machines to the domain.

  8. #8
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    You could try it with the domain administrator account just to test if it is a permissons thing.

    ...and if you look at the active directory settings on a per host basis it's all spelt correctly in the form domain\username? not domain\\username or domainusername?

  9. #9

    Join Date
    May 2007
    Location
    London
    Posts
    221
    Thank Post
    6
    Thanked 13 Times in 11 Posts
    Rep Power
    17
    Got it. Was the username, had no \ in it.

    Working a treat now!

    Does your installation put machines into different OU's depending on what group the host is in?

    One niggly thing about FOG is that when you do the host registration you can't pick what group it goes into so it doesn't pick up the AD settings straight away.

  10. #10
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    The group functionailty is only used to modify settings on more than one host, the hosts will never inherit any settings from a group. If you add a new host into your group now, the AD settings will not be updated on that host, any snapins that were assigned to that group will not be assigned to that host etc.

    I did put in a feature request the group function be changed to actually push settings onto new hosts in a group but that maybe too big a change to implement.

    I just let them appear in the 'Computers' container and move them when the workstation is built, on a rebuild they'll be in the right place. So unless you rename things often or are setting up new computers you don't have to touch it.

  11. #11

    Join Date
    May 2007
    Location
    London
    Posts
    221
    Thank Post
    6
    Thanked 13 Times in 11 Posts
    Rep Power
    17
    I thought that was the case, wanted to find out though, thank you. At least I'm not being a noob with it.

    We're imaging up a bunch of new laptops at the moment and we have them go into a holding OU so that they pick up policies etc, then we can move them out to wherever they need to be.

    Thanks Morgan

  12. #12
    obijon's Avatar
    Join Date
    Nov 2010
    Location
    SC
    Posts
    13
    Thank Post
    3
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Something else to be aware of is that AD is joined only after imaging. To my knowledge you can't force a join via FOG without reimaging.

    Edit: See post below.
    Last edited by obijon; 1st December 2010 at 05:12 PM.

  13. #13
    morganw's Avatar
    Join Date
    Apr 2009
    Location
    Cambridge
    Posts
    816
    Thank Post
    46
    Thanked 132 Times in 126 Posts
    Rep Power
    40
    The reimaging task is just about getting the image on the drive, the hostname changing and domain join are handled by the service. There isn't any interaction between the two. If you install the service on a PC that is out of the domain, and the FOG database has the Active Directory settings set for that host then it will attempt to join. You can watch the log file on the host as the service starts and check the behaviour, it's totally independent.

  14. Thanks to morganw from:

    obijon (1st December 2010)

  15. #14
    obijon's Avatar
    Join Date
    Nov 2010
    Location
    SC
    Posts
    13
    Thank Post
    3
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Good to know, thanks for the correction.

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 6
    Last Post: 31st May 2011, 08:05 AM
  2. Icon Transparency using Active Directory and Active Desktop Backgrounds
    By steveo2000 in forum Windows Server 2000/2003
    Replies: 2
    Last Post: 19th May 2010, 09:50 AM
  3. active directory
    By bart21 in forum Windows Server 2000/2003
    Replies: 1
    Last Post: 4th January 2010, 08:24 PM
  4. Replies: 0
    Last Post: 6th April 2009, 10:26 PM
  5. Replies: 7
    Last Post: 31st January 2008, 12:17 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •