Windows 2003 SP2 64-bit Domain Joining Bug

On a recent project we were automating the build of 32-bit and 64-bit Windows 2003 SP2 servers. This was within a very large “Global” Active Directory environment, with many Trusted and External Domains.

The 32-bit builds were working fine, but the 64-bit builds were not adhering to the Active Directory Sites and Services locations to locate the closest Domain Controller. The 64-bit servers were joining the Domain successfully, but on a reboot they were unable to authenticate. This is because they had joint the Domain by making a connection to a remote Domain Controller located somewhere else around the world, but on reboot were trying to authenticate against a local Domain Controller. Of course, at this stage replication had not taken place, so the local Domain Controllers had no record of the new Computer account, and hence the reason why it was failing to authenticate.

I did a lot of research, but found nothing. However I concluded that this a bug with the Windows 2003 64-bit unattend process in the way it joins the domain.

So I changed my automated build model to build the servers as workgroup servers and then run a vbscript to join the domain during the GUIRUNONCE tasks. This has been working well with 100% success for every new server built. The script makes a connection to the local Domain Controllers, rather than some random Domain Controller located somewhere else in the world.

You can find the script here.

I hope you find this information useful.

Cheers,

Jeremy.

• Bio
• Twitter
• LinkedIn
• Latest Posts

Jeremy Saunders

Technical Architect | DevOps Evangelist | Software Developer | Microsoft, NVIDIA, Citrix and Desktop Virtualisation (VDI) Specialist/Expert | Rapper | Improvisor | Comedian | Property Investor | Kayaking enthusiast at J House Consulting

Jeremy Saunders is the Problem Terminator. He is a highly respected IT Professional with over 35 years’ experience in the industry. Using his exceptional design and problem solving skills with precise methodologies applied at both technical and business levels he is always focused on achieving the best business outcomes. He worked as an independent consultant until September 2017, when he took up a full time role at BHP, one of the largest and most innovative global mining companies. With a diverse skill set, high ethical standards, and attention to detail, coupled with a friendly nature and great sense of humour, Jeremy aligns to industry and vendor best practices, which puts him amongst the leaders of his field. He is intensely passionate about solving technology problems for his organisation, their customers and the tech community, to improve the user experience, reliability and operational support. Views and IP shared on this site belong to Jeremy.

@jeremysaunders

Follow @jeremysaunders

Latest posts by Jeremy Saunders (see all)

• Best Practice for the Active Setup StubPath value - September 25, 2023
• User Profile Migration Strategy and PowerShell Script with a User Interface - August 28, 2023
• Cold Starting and/or Hydrating Your Applications To Improve Their Startup Times - June 27, 2023

Tagged as: add domain, bug, join domain