This script will join a computer to a domain. You can either specify the parameters as command line arguments, or look them up in an ini file.<\/p>\n
If an OU is not specified, the value is set to NULL, which means that the computer object will be placed in the OU\/Container that is set as the Domain default within Active Directory, which is typically the Computers container.<\/p>\n
It also checks to see if the computer object already exists in AD. If it does, it will join to the object in its existing location.<\/p>\n
IMPORTANT: Refer to the %SystemRoot%\\Debug\\NetSetup.LOG file to help fault find any issues with the domain joining process.<\/p>\n
Syntax of command line, if specifying arguments:<\/p>\n
cscript JoinDomain.vbs “[domain]” “[username]” “[password]” “[MachineAccountOU]”<\/p>\n
Example of command line, if specifying arguments:<\/p>\n
cscript JoinDomain.vbs “mydomain.com” “build” “password” “OU=Citrix,OU=Servers,DC=myDomain,DC=com”<\/p>\n
Example of the contents of the JoinDomain.ini file:<\/p>\n
[Identification]
\nJoinDomain = mydomain.com
\nDomainAdmin = build
\nDomainAdminPassword = “password”
\nMachineObjectOU = “OU=New,OU=Servers,DC=myDomain,DC=com”<\/p>\n
Const JOIN_DOMAIN = 1 Dim wshShell, objFSO, sScriptFullName, sScriptPath, blnUseArgs, strDomain, strUser blnDebug = False<\/p>\n Set wshShell = CreateObject(“wscript.shell”) If WScript.Arguments.Count < 3 Then\n blnUseArgs = False\nElse\n blnUseArgs = True\n strDomain = WScript.Arguments(0)\n strUser = WScript.Arguments(1)\n strPassword = WScript.Arguments(2)\n If WScript.Arguments.Count = 4 Then\n strOU = WScript.Arguments(3)\n End If\nEnd If\n\nIf NOT blnUseArgs Then\n If objFSO.FileExists(striniFile) Then\n strDomain = GetINIString(\"Identification\", \"JoinDomain\", \"\", striniFile)\n strDomain = Replace(strDomain,\"\"\"\",\"\")\n strUser = GetINIString(\"Identification\", \"DomainAdmin\", \"\", striniFile)\n strUser = Replace(strUser,\"\"\"\",\"\")\n strPassword = GetINIString(\"Identification\", \"DomainAdminPassword\", \"\", striniFile)\n strPassword = Replace(strPassword,\"\"\"\",\"\")\n strOU = GetINIString(\"Identification\", \"MachineObjectOU\", \"\", striniFile)\n strOU = Replace(strOU,\"\"\"\",\"\")\n If blnDebug Then\n wscript.echo \"Domain: \" & strDomain & vbcrlf & _\n \"User: \" & strUser & vbcrlf & _\n \"Password: \" & strPassword & vbcrlf & _\n \"OU: \" & strOU\n End If\n End If\nEnd If\n\nIf strDomain <> “” AND strUser <> “” AND strPassword <> “” Then<\/p>\n If strOU = “” Then Set objNetwork = CreateObject(“WScript.Network”) strExistingLocation = getHostOU(strComputer,strDomain,strUser,strPassword) Set objComputer = GetObject(“winmgmts:{impersonationLevel=Impersonate}!\\\\” & _ wscript.echo “Attempting to join the ” & chr(34) & strDomain & chr(34) & ” Domain.” intReturn = objComputer.JoinDomainOrWorkGroup(strDomain, strPassword, strDomain & “\\” & strUser, _ Select Case intReturn End If<\/p>\n Set wshShell = Nothing wscript.quit(0)<\/p>\n Function GetINIString(Section, KeyName, Default, FileName) ‘Get contents of the INI file As a string ‘Find section ‘Section exists. Find end of section ‘Separate section contents If InStr(1, sContents, vbCrLf & KeyName & “=”, vbTextCompare)>0 Then If isempty(Found) Then Value = Default ‘Separates one field between sStart And sEnd Function GetFile(ByVal FileName) GetFile = FS.OpenTextFile(FileName).ReadAll Function getHostOU(hostname,strDomain,strUser,strPassword)<\/p>\n Dim arrDefaultNamingContext ‘ ADS Authentication constants that can be used. ‘ First, need to set the correct Default Naming Context ‘ Specify the LDAP filter strCommandText = strBase & “;” & strFilter & “;” & strAttributes & “;” & strScope<\/p>\n ‘ Create ADO connection using the ADSI OLE DB provider On Error Resume Next If Len(hostDN) > 0 Then If Len(hostOU) > 0 Then Set objADOConnection = Nothing This script will join a computer to a domain. You can either specify the parameters as command line arguments, or look them up in an ini file. If an OU is not specified, the value is set to NULL, which means that the computer object will be placed in the OU\/Container that is set as … Read more<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"ngg_post_thumbnail":0,"footnotes":""},"categories":[5],"tags":[155],"class_list":["post-409","post","type-post","status-publish","format-standard","hentry","category-scripting","tag-join-domain"],"aioseo_notices":[],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/posts\/409","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/comments?post=409"}],"version-history":[{"count":20,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/posts\/409\/revisions"}],"predecessor-version":[{"id":508,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/posts\/409\/revisions\/508"}],"wp:attachment":[{"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/media?parent=409"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/categories?post=409"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.jhouseconsulting.com\/jhouseconsulting\/wp-json\/wp\/v2\/tags?post=409"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\n‘ This script will join a computer to a domain. You can either specify the parameters as
\n‘ command line arguments, or look them up in an ini file.
\n‘ If an OU is not specified, the value is set to NULL, which means that the computer
\n‘ object will be placed in the OU\/Container that is set as the Domain default within
\n‘ Active Directory.
\n‘ It also checks to see if the computer object already exists in AD. If it does, it will
\n‘ join to the object in its existing location.
\n‘
\n‘ IMPORTANT: Refer to the %SystemRoot%\\Debug\\NetSetup.LOG file to help fault find any
\n‘ issues with the domain joining process.
\n‘
\n‘ Release 1.2 by Jeremy@jhouseconsulting.com on 5th March 2010.
\n‘ Written by Jeremy@jhouseconsulting.com on 13th November 2009.
\n‘
\n‘ Syntax of command line, if specifying arguments:
\n‘ cscript JoinDomain.vbs “
\n‘
\n‘ Example of command line, if specifying arguments:
\n‘ cscript JoinDomain.vbs “mydomain.com” “build” “password” “OU=Citrix,OU=Servers,DC=myDomain,DC=com”
\n‘
\n‘ Example of the contents of the JoinDomain.ini file:
\n‘
\n‘ [Identification]
\n‘ JoinDomain = mydomain.com
\n‘ DomainAdmin = build
\n‘ DomainAdminPassword = “password”
\n‘ MachineObjectOU = “OU=New,OU=Servers,DC=myDomain,DC=com”
\n‘
\nOption Explicit<\/p>\n
\nConst ACCT_CREATE = 2
\nConst ACCT_DELETE = 4
\nConst WIN9X_UPGRADE = 16
\nConst DOMAIN_JOIN_IF_JOINED = 32
\nConst JOIN_UNSECURE = 64
\nConst MACHINE_PASSWORD_PASSED = 128
\nConst DEFERRED_SPN_SET = 256
\nConst INSTALL_INVOCATION = 262144<\/p>\n
\nDim strPassword, strOU, objNetwork, strComputer, strExistingLocation, objComputer
\nDim intReturn, strSystemDrive, striniFileLocation, striniFile, strErrorDescription
\nDim blnDebug<\/p>\n
\nSet objFSO = CreateObject(“Scripting.FileSystemObject”)
\nsScriptFullName = WScript.ScriptFullName
\nsScriptPath = Left(sScriptFullName, InStrRev(sScriptFullName, “\\”))
\nstrSystemDrive = WshShell.ExpandEnvironmentStrings(“%SystemDrive%”)
\nstriniFileLocation =strSystemDrive & “\\wininst\\”
\nstriniFile = striniFileLocation & “JoinDomain.ini”
\nIf NOT objFSO.FileExists(striniFile) Then
\n striniFile = sScriptPath & “JoinDomain.ini”
\nEnd If<\/p>\n
\n strOU = NULL
\n End If<\/p>\n
\n strComputer = objNetwork.ComputerName<\/p>\n
\n If strExistingLocation <> “” Then
\n strOU = strExistingLocation
\n End If<\/p>\n
\n strComputer & “\\root\\cimv2:Win32_ComputerSystem.Name='” & strComputer & “‘”)<\/p>\n
\n If NOT IsNULL(strOU) Then
\n wscript.echo “The Computer Object will be placed in the following OU:” & vbcrlf & _
\n chr(34) & strOU & chr(34)
\n End If<\/p>\n
\n strOU, JOIN_DOMAIN + ACCT_CREATE)<\/p>\n
\n Case 0
\n strErrorDescription = “Successfully added the computer to the ” & chr(34) & strDomain & chr(34) & ” Domain.”
\n Case 5
\n strErrorDescription = “Access is denied”
\n Case 87
\n strErrorDescription = “The parameter is incorrect”
\n Case 110
\n strErrorDescription = “The system cannot open the specified object”
\n Case 1323
\n strErrorDescription = “Unable to update the password”
\n Case 1326
\n strErrorDescription = “Logon failure: unknown username or bad password”
\n Case 1355
\n strErrorDescription = “The specified domain either does not exist or could not be contacted”
\n Case 2224
\n strErrorDescription = “The account already exists”
\n Case 2691
\n strErrorDescription = “The machine is already joined to the domain”
\n Case 2692
\n strErrorDescription = “The machine is not currently joined to a domain”
\n End Select
\n wscript.echo strErrorDescription<\/p>\n
\nSet objFSO = Nothing
\nSet objNetwork = Nothing
\nSet objComputer = Nothing<\/p>\n
\n Dim INIContents, PosSection, PosEndSection, sContents, Value, Found<\/p>\n
\n INIContents = GetFile(FileName)<\/p>\n
\n PosSection = InStr(1, INIContents, “[” & Section & “]”, vbTextCompare)
\n If PosSection>0 Then<\/p>\n
\n PosEndSection = InStr(PosSection, INIContents, vbCrLf & “[“)
\n ‘?Is this last section?
\n If PosEndSection = 0 Then PosEndSection = Len(INIContents)+1<\/p>\n
\n sContents = Mid(INIContents, PosSection, PosEndSection – PosSection)<\/p>\n
\n Found = True
\n ‘Separate value of a key.
\n Value = SeparateField(sContents, vbCrLf & KeyName & “=”, vbCrLf)
\n ElseIf InStr(1, sContents, vbCrLf & KeyName & ” =”, vbTextCompare)>0 Then
\n Found = True
\n ‘Separate value of a key.
\n Value = SeparateField(sContents, vbCrLf & KeyName & ” =”, vbCrLf)
\n End If
\n End If<\/p>\n
\n GetINIString = Trim(Value)
\nEnd Function<\/p>\n
\nFunction SeparateField(ByVal sFrom, ByVal sStart, ByVal sEnd)
\n Dim PosB: PosB = InStr(1, sFrom, sStart, 1)
\n If PosB > 0 Then
\n PosB = PosB + Len(sStart)
\n Dim PosE: PosE = InStr(PosB, sFrom, sEnd, 1)
\n If PosE = 0 Then PosE = InStr(PosB, sFrom, vbCrLf, 1)
\n If PosE = 0 Then PosE = Len(sFrom) + 1
\n SeparateField = Mid(sFrom, PosB, PosE – PosB)
\n End If
\nEnd Function<\/p>\n
\n Dim FS: Set FS = CreateObject(“Scripting.FileSystemObject”)
\n ‘Go To windows folder If full path Not specified.
\n If InStr(FileName, “:\\”) = 0 And Left (FileName,2)<>“\\\\” Then
\n FileName = FS.GetSpecialFolder(0) & “\\” & FileName
\n End If
\n On Error Resume Next<\/p>\n
\n Set FS = Nothing
\nEnd Function<\/p>\n
\n Dim item
\n Dim strDefaultNamingContext
\n Dim strADsPath
\n Dim strBase
\n Dim strFilter
\n Dim strAttributes
\n Dim strScope
\n Dim strCommandText
\n Dim objADOConnection
\n Dim objADOCommand
\n Dim objADORecordset
\n Dim hostDN, hostOU<\/p>\n
\n Const ADS_SECURE_AUTHENTICATION = &H1
\n Const ADS_USE_ENCRYPTION = &H2
\n Const ADS_USE_SSL = &H2
\n Const ADS_USE_SIGNING = &H40
\n Const ADS_USE_SEALING = &H80
\n Const ADS_USE_DELEGATION = &H100
\n Const ADS_SERVER_BIND = &H200<\/p>\n
\n‘ arrDefaultNamingContext = Split(strDomain,”.”)
\n‘ For Each item in arrDefaultNamingContext
\n‘ If strDefaultNamingContext = “” Then
\n‘ strDefaultNamingContext = “DC=” & item
\n‘ Else
\n‘ strDefaultNamingContext = strDefaultNamingContext & “,DC=” & item
\n‘ End If
\n‘ Next
\n strDefaultNamingContext = strDomain
\n strADsPath = “LDAP:\/\/” & strDefaultNamingContext
\n strBase = “<\" & strADsPath & \">”<\/p>\n
\n strFilter = “(&(objectClass=computer)(cn=” & UCase(hostname) & “))”
\n strAttributes = “cn,distinguishedName,ADsPath”
\n‘ Specify the scope (base, onelevel, subtree)
\n strScope = “subtree”<\/p>\n
\n Set objADOConnection = CreateObject(“ADODB.Connection”)
\n Set objADOCommand = CreateObject(“ADODB.Command”)
\n objADOConnection.Provider = “ADsDSOObject”
\n objADOConnection.Properties(“User ID”) = strDomain & “\\” & strUser
\n objADOConnection.Properties(“Password”) = strPassword
\n objADOConnection.Properties(“Encrypt Password”) = True
\n objADOConnection.Properties(“ADSI Flag”) = ADS_SERVER_BIND Or ADS_SECURE_AUTHENTICATION
\n objADOConnection.open “Active Directory Provider”
\n objADOCommand.activeconnection = objADOConnection
\n objADOCommand.CommandText = strCommandText
\n objADOCommand.Properties(“Page Size”) = 2000
\n objADOCommand.Properties(“Sort On”) = “cn”<\/p>\n
\n Set objADORecordset = objADOCommand.Execute
\n If Err.Number = 0 Then
\n While Not objADORecordset.EOF
\n hostDN = objADORecordset.Fields(“distinguishedName”)
\n objADORecordset.MoveNext
\n Wend
\n objADOConnection.Close<\/p>\n
\n hostOU = Right(hostDN, (Len(hostDN) – InStr(hostDN, “,”)))
\n Else
\n hostOU =””
\n End If<\/p>\n
\n getHostOU = hostOU
\n Else
\n getHostOU = “”
\n End If
\n Else
\n wscript.echo “Cannot connect to the Active Directory Provider to check for the existence of the Computer Object.”
\n getHostOU = “”
\n End If
\n On Error Goto 0
\n Err.Clear<\/p>\n
\n Set objADOCommand = Nothing
\n Set objADORecordset = Nothing
\nEnd Function
\n<\/dirtycode><\/p>\n","protected":false},"excerpt":{"rendered":"