Active Directory join error 2732
-
I am testing out a change to our imaging process that would allow FOG to join domains for us after imaging. It assigns the hostname properly when I do the full inventory option and give it the group with the domain I want it to join. I have it using my credentials for testing so I know the creds work. fog client log shows its phoning home just fine but it throws an error when it tries to join a domain: “Unknown Return Code: 2732”
What does 2732 mean?
-
Seems maybe the account is locked?
-
@Tom-Elliott It’s using my account and that account is not locked.
-
@mentaluproar The error code you see is 2732 which is coming from the Domain controller. If your account is the one indeed being used, and isn’t locked, I don’t know what else to look into.
Basically 2732 is the code from MS, not from FOG.
-
@mentaluproar sadly, due to the windows updates previously mentioned, which are actually fully enforced in the 2024-08 updates, a domain admin account is pretty much required to join the domain in an automated fashion. Microsoft gives some guidance on creating policies to allow a least privileged account but I haven’t been able to get that to work with fog. Granted, as long as your aren’t granting access to the fog gui to non privileged users, saving those creds in fog is safe and secured.
