Angel Bosch Mora
2021-Oct-26 09:41 UTC
[Samba] disable automatic creation of computer accounts
> However, that is probably still not what you are asking for. What > does > your original script actually do ? Would it matter if the join > created > the computer object in 'CN=Computers' again ? Do you know that 'net > ads > join' has a parameter '--createcomputer=OU' ? >yeah, I can work with diferent OUs if necessary. as I see it there's 2 different steps here - Creating computer object - Joining computer to AD Can those be fine grained? I just want a way to fail joining if computer isn't already created on AD subtree. abosch -- Institut Mallorqui d'Afers Socials. Aquest missatge, i si escau, qualsevol fitxer annex, es dirigeix exclusivament a la persona que n'es destinataria i pot contenir informacio confidencial. En cap cas no heu de copiar aquest missatge ni lliurar-lo a terceres persones sense permis expres de l'IMAS. Si no sou la persona destinataria que s'hi indica (o la responsable de lliurar-l'hi) us demanam que ho notifiqueu immediatament a l'adreca electronica de la persona remitent. Abans d'imprimir aquest missatge, pensau si es realment necessari.
Rowland Penny
2021-Oct-26 10:00 UTC
[Samba] disable automatic creation of computer accounts
On Tue, 2021-10-26 at 11:41 +0200, Angel Bosch Mora wrote:> > However, that is probably still not what you are asking for. What > > does > > your original script actually do ? Would it matter if the join > > created > > the computer object in 'CN=Computers' again ? Do you know that 'net > > ads > > join' has a parameter '--createcomputer=OU' ? > > > > yeah, I can work with diferent OUs if necessary. > > as I see it there's 2 different steps hereI was just wondering if that was one of the things your 'creation' script was doing, creating the computer object in a different OU.> - Creating computer object > - Joining computer to AD > > Can those be fine grained? > I just want a way to fail joining if computer isn't already created > on AD subtree.I think you are going to have to script around this, check if the computer object exists and fail if it doesn't. I take it we are talking about joining a Unix machine. Rowland