domain | nooblet.org

You can use netdom to rename any computer, including a domain controller:

netdom computername <old fqdn> /add:<new fqdn>
netdom computername <old fqdn> /makeprimary:<new fqdn>
# reboot
netdom computername <new fqdn> /remove:<old fqdn>

netdom computername <old fqdn> /add:<new fqdn>

netdom computername <old fqdn> /makeprimary:<new fqdn>

# reboot

netdom computername <new fqdn> /remove:<old fqdn>

However this will leave the attribute msDS-AdditionalDnsHostName with the old name. Check this in ADUC attribute editor (or ADSIEDIT.msc):

Remove the old name and restart.

PS. This fixes not being able to re-use the old name on another computer. You get the error The operation failed because SPN value provided for addition/modification is not unique forest-wide, and you will see the old domain name when you run setspn -l <oldname>. Performing the above attribute changes fixes this.

I wanted a Windows XP client which was not a member of the domain to have the same look and feel as the rest of the domain member clients. Part of creating this effect was to enable the Ctrl-Alt-Del to login prompt at startup.

In order to enable the Ctrl-Alt-Del prompt at startup in Windows XP you need to set or create the DWORD registry entry “DisableCAD” to 0.

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon]
"DisableCAD"=dword:00000001

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogon]

"DisableCAD"=dword:00000001

See more information at Microsoft Technet.

You can download this registry file to set this for you.

Download
Enable Ctrl-Alt-Del Login Prompt for WinXP (140 bytes, 3,412 hits)

#!/usr/bin/nooblet.org

/* not just your average nub */

Tag Archives: domain

Renaming a Domain Controller