• Recent
    • Unsolved
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Register
    • Login

    Is it required to delete PC from AD when re Imaging?

    Scheduled Pinned Locked Moved
    General
    6
    8
    6.3k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Roger SaffleR
      Roger Saffle
      last edited by

      Been using fog for a long time. Just now starting with Active Directory. Prior to that we had Novell eDirectory. When re-imaging a machine there was no need to delete it from eDirectory. Novell took care of hooking the re-imaged machine to its directory object. It seems to me that one must delete the PC’s AD object before a reimage to avoid security relationship errors from AD? Is this correct?
      ’ Is

      1 Reply Last reply Reply Quote 0
      • Wayne WorkmanW
        Wayne Workman
        last edited by

        No sir, not required at all.

        It’s name based. If you have a computer object with name abcd1234, and you image that particular computer and it re-uses the same name, when it joins to the domain it’ll reuse the old object too.

        If you image a computer with a different name, a new object with the new name is created.

        If you change the name of a computer already joined to AD, the fog client will actually create a new object for you in AD, and the old one becomes disabled.

        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
        Daily Clean Installation Results:
        https://fogtesting.fogproject.us/
        FOG Reporting:
        https://fog-external-reporting-results.fogproject.us/

        1 Reply Last reply Reply Quote 0
        • Roger SaffleR
          Roger Saffle
          last edited by

          ok, then i must have other AD issues as a reimage gives me an security relationship error until i delete the object and then fog ads it back. Let me try another test PC. Thanks for the quick reply.

          W 1 Reply Last reply Reply Quote 0
          • W
            Wolfbane8653 Developer @Roger Saffle
            last edited by

            @Roger-Saffle Are you using an image that was already attached to the domain when you uploaded it?

            Wayne WorkmanW 1 Reply Last reply Reply Quote 1
            • Wayne WorkmanW
              Wayne Workman @Wolfbane8653
              last edited by

              @Wolfbane8653 said in Is it required to delete PC from AD when re Imaging?:

              @Roger-Saffle Are you using an image that was already attached to the domain when you uploaded it?

              My thoughts exactly.

              Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
              Daily Clean Installation Results:
              https://fogtesting.fogproject.us/
              FOG Reporting:
              https://fog-external-reporting-results.fogproject.us/

              1 Reply Last reply Reply Quote 0
              • sudburrS
                sudburr
                last edited by

                Do you sysprep your machines Roger?

                [ Standing in between extinction in the cold and explosive radiating growth ]

                1 Reply Last reply Reply Quote 0
                • george1421G
                  george1421 Moderator
                  last edited by

                  I agree its best practice to not connect the reference computer to the domain and use sysprep to prepare the reference image for image capture. I know some people say that sysprep isn’t necessary if you are capturing and deploying to the same hardware model, but if you have a mix of hardware sysprep is the best way to ensure you image works across the computer fleet.

                  I can see AO relationship issue with previous deployed machines as you roll out new ones if you had the reference image connected to the domain and you didn’t sysprep it before you captured it.

                  Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

                  1 Reply Last reply Reply Quote 1
                  • J
                    jbsclm Developer
                    last edited by

                    Don’t forget that the machine account in AD has a password, this gets changed on a regular basis, this happens invisibly, it is a function of the way AD words.
                    From memory it gets changed every 30 days, and as I say is completely invisible to users and admins, the last changed date can be read from AD via LDAP, although it needs a bit of work to translate it into human readable format.
                    If you image a PC without sysprep, when you deploy that image it will not join the domain if the machine account password has changed.
                    This will need the PC to be deleted and re-added to AD to resolve.

                    1 Reply Last reply Reply Quote 1
                    • 1 / 1
                    • First post
                      Last post

                    229

                    Online

                    12.1k

                    Users

                    17.3k

                    Topics

                    155.4k

                    Posts
                    Copyright © 2012-2024 FOG Project