Database Search

TechHome

Samples from Users

• !!!NEWSFLASH!!!
• !Reading List
• 1063 Object Doesnt Exist
• 1068 Error trying to duplicate user groups
• 1073 Cannot Contact the LDAP Server
• 234 Unable to Parse ADSI Path on WinPE
• 275 Search Return Too Many Object Paths
• Active Directory - Force Replication
• ACTIVEDS.dll could not be Found in the Specified Path
• AD Account Creation Date
• AD Event Monitoring Issues
• AD Locked Account Problem
• AD MachineRole Property
• AD OU Membership
• AD Password Expires Date
• Add a user to a OU
• Add more then one Othermailbox to Account
• Add New Mail Account to users that do not have one
• Adding a Machine to an AD Domain
• Adding a workstation (NT4 and W2k) to the domain
• Adding a Workstation to AD in Correct OU
• Adding NT4 Global Group to a Windows 2000 Domain Local Group
• ADSI and COM
• ADSI Function Equivalent to wntMemberSet
• ADSI IIS related bug in Win2k3 sp1
• ADSI Scriptomatic
• ADSI Special Characters
• ADSI Support on Windows PE
• Attributes - Property Names - of an AD Account
• Bad Path Error on NT4
• Binding to the Global Catalog
• BitLocker Recovery Key
• Check for Admin Access
• Check if a Computer Belongs to a Certain OU
• Check if User Account Object Exists
• Check to see if Print Services are Running
• COM - Active Directory Published Certificates Info
• Convert Qword
• Converting Properties to a Human Readable Form
• Copy User or Computer account in AD
• Create a Mailbox and NT-Security-Descriptor property
• Create an OU in ADSI
• Create Virtual Directory
• Creating Computer Accounts
• Creating IIS 5 FTP Users
• Date AD account was modified last
• Delete Mailbox in Exchange
• Detect Disabled Accounts
• Disable Computer Accounts
• Display list of OUs
• Distribution List and Members
• Dont Expire Password
• dsAddtoGrp 1063 Object Does Not Exist
• dsAddToGrp and What is TESTECH
• dsDeleteObj Issue
• dsFindPath Limitation
• dsFindPath Search Request Slow
• dsfindpath Syntax Error
• dsFindPath with NULL Criteria
• dsGetMemGrp Sample
• dsGetProperty Error 1001 Using Slash in Path
• dsGetUsersGrps Error 1001
• dsGetUsersGrps Problem
• dsMoveObj error 1068
• dssetcredentx Error - The Requested Object does not Exist
• dsSetPassword and Blank Passwords
• dsSetProperty Error 246 Custom Attribute
• dsSetProperty userAccountControl
• dsSetSecProp Set Security Permission
• Editing IIS Properties in 2003 SP1
• Enumerating computers in a Win2k AD domain
• Error 1026 - the specified domain either does not exist or could not be contacted
• Error 1045 Operation is not Allowed on RDN
• Error 1047 Creating Exchange 5.5 Mailbox
• Error 1047 Operations Error Occured
• Error 1047 with dsCreateObj on Exchange 2K
• Error 1062 Constraint Violation Setting pwdLastSet Property
• Error 1063 using dsObjCreate
• Error 1068 The server is unwilling to Perform
• Error 1068 with dsSetObj on New User Account
• Error 212
• Error 222 with dsGetChildPath
• Error 234 Unable to parse ADSI path on NT4
• Error 239 Attempting to Rename an Account
• Error 241 when trying to remove a user from group
• Error 243 - Not a property of the object.
• Error 246 - Propertys syntax not supported
• Errors 1001 and 1026
• Examples for ADSI not working
• Exchange with ADSI
• Extract SMTP address in Exch 5 5
• Find DHCP
• Find Exchange Servers
• Finding a Users Exchange Server
• Force Password Change for ADSI User
• ForeignSecurityPrincipals Issue
• Get Computer Names
• Get Current User Path
• Get Effective Permissions
• Get Exchange Server a Users Mailbox is On
• Get List of all Exchange Aliases from Active Directory
• Get Logged In User
• Get User Properties
• Get Users Full Mame from their Logon ID
• Getting LastLoginTimestamp Value in ADSI
• Group Membership Checking
• How do I set the Password and Other Properties
• How to Get at Virtual Dirs
• How to Interpret UserFlags
• How to Pull all ObjectClass Items
• How to Rename an Account
• How to Specify ADSI Paths
• Instantiating Application Objects with ADSI
• LDAP Path with Comma
• LDAP Query Syntax
• List and Retrieve Groups in an OU
• List Computer Objects
• List Disabled User Accounts on the Domain
• List Groups a User is a Direct Member Of
• List Groups Computer is Member Of
• List Groups in OU
• List OU Objects
• List Users that Belong to an OU W2k AD
• List Users with Multiple Attributes
• Lookup Hidden Mailboxes in Exchange 5.5
• Member of Nested Group
• Modify UserAccountControl Attribute
• Move computer between containers
• MsExchMailboxSecurityDescriptor
• Name display --lastname, firstname
• Problem doing CreateMailbox on Exchange 5
• Problem Getting and Settind the AccountExpires Active Directory Property
• Proper AD Query
• Proper Syntax for an LDAP Path
• Query User to Identify which OU it Belongs
• Recursive Searching and dsGetChildPath vs dsFindPath
• Removing User Must Change Password At Next Logon
• Rename Computer in AD
• Renaming a Group in Active Directory
• Reset passwords in Active Directory
• Return Closest Domain Controller using ADSI
• RootDSE Explanation
• Search All Users in AD for a Property
• Set AccountExpires attribute
• Set Logon Name - ADSI
• Setting Expiry Date on AD Account
• Synchronize Domain and Local Password Issue
• Terminal Server Properties
• Test if Object is a Group
• Three Ways a User is Part of a Group in AD
• User Permissions on an AD Object
• Users Last Logon Time
• Verifying User Credentials Against AD
• Virtual directories on IIS via ADSI

Can't find the information you are looking for here? Then leave a message over on our WinBatch Tech Support Forum.

Adding a Workstation to AD in Correct OU

 Keywords:  ADSI Active Directory Add Workstation NT4 W2K

Question:

dsSetProperty (sComputerPath, "ntsecurityDescriptor", secDescriptor)

Wil Extender Error: 1026:ADSI error.
The security ID structure is invalid
WINBATCH 32 2002H
WIL VERSION 3.8hch

Answer:

User Shared code:

AddExtender("wwads34I.dll")

i_errorlevel=1
what=param1
s_pcname = Environment ("computername")
s_country=strsub(s_pcname,3,2)
s_machine=strsub(s_pcname,5,1)
s_temp="c:\windows\temp"
s_administrator="YOURADMIN"
s_domain="YOURDOMAIN"
s_password="YOURPASSWORD"

if strupper(s_machine) == "L" then
s_machine="Laptops"
else
if strupper(s_machine) == "D" then
s_machine = "Desktops"
end if
end if

if strupper(s_country) == "BE" then
country = "Belgium"
dc="WELEUDC2"
else
if strupper(s_country) == "FR" then
country = "France"
dc="WEARMDC2"
else
if strupper(s_country)=="LU" then
country = "Luxembourg"
dc="WEDIEDC2"
else
if strupper(s_country) == "NL" then
country = "Netherlands"
dc="WEBREDC2"
else
i_errorlevel=99
goto EndScript
end if
end if
end if
end if

OU="OU=%s_machine%,OU=Workstations,OU=%country%,DC=XX,DC=XX,DC=XX"
td=TimeDate()

if strlower(What)=="join" then
dsSetCredent("%s_domain%\%s_administrator%", "%s_password%")
sAdsiPath = "LDAP://%dc%.YOURDOMAIN"
lPaths= dsFindPath(sAdsiPath, "cn=%s_pcname%")
logfile=fileopen ("c:\rollout\JoinDOM.LOG","WRITE")
if lpaths <> "" then FileWrite (logfile, "%lpaths% deleted in AD")
dsDeleteObj(lPaths)
timedelay(5)
end if
runshell("netdom.exe","JOIN %s_pcname% /domain:YOURDOMAIN\%dc% /userD:%s_domain%\%s_administrator% /passwordD:%s_password% /OU:%ou%","",@HIDDEN,@WAIT)
status=IntControl (64, 0, 0, 0, 0)
if status <> 0 then
FileWrite (logfile, " !ERROR! NETDOM JOIN ERROR %status% on %td%")
i_errorlevel=99
else
handle=fileopen("c:\temp\joindom.cfg","WRITE")
fileclose(handle)
FileWrite (logfile, "NETDOM JOIN completed on %td%")
i_errorlevel=0
end if
fileclose(logfile)
end if
else
if strlower(What)=="verify" then
runshell("netdom.exe","VERIFY %s_pcname% /domain:YOURDOMAIN","",@HIDDEN,@WAIT)
status=IntControl (64, 0, 0, 0, 0)
message("VERIFY Status",status)
end if
end if

:EndScript
IntControl (1000, i_errorlevel, 0, 0, 0)
exit 

Article ID:   W15377

File Created: 2014:07:18:09:38:24

Last Updated: 2014:07:18:09:38:24