/build/static/layout/Breadcrumb_cap_w.png

K2000 join domain password question

Good day,

I've been working on getting the KACE K2000 imaging process working and I'm to the point where I'm working on automating joining a computer to a Windows Active Directory domain.  I got it to work properly using the post-installation task preloaded with the device using this guide that references the join_domain.vbs script.

 

http://ikboxdemo3.kace.com/help/admin_guide/postinstalltask_domain_task.html

 

My question is, is there anyway that can be run without displaying the password in plain text on the command line path?

Asked 11 years ago 2685 views
0 Comments   [ + ] Show comments

Answers (2)

Posted by: SMal.tmcc 11 years ago
Red Belt
0

We created a special k2000joiner user that has rights to join machines and modify existing computers entries only and use that user in the scripts. 

Comments:
  • That's what I was also thinking of, sounds possible. I'll go with that then. - narcispy 11 years ago
Posted by: jamie_kace 11 years ago
Brown Belt
0

Well if you turn the echo off in the batch file it should block the display of the commands that are being run.  Assuming you are following the post here: 

http://www.kace.com/support/resources/kb/article/how-to-rename-a-computer-and-join-it-to-a-windows-domain-image-deployment

You could just add the line:    @echo off to the top of each of the batch files, particularly the 2_join_domain_xxx.bat file.

Comments:
  • Actually I was using this one in question

    http://ikboxdemo3.kace.com/help/admin_guide/postinstalltask_domain_task.html

    I tried that one you linked first but I was never able to get it to do the 2nd task of joining the domain, it would just rename the computer instead.

    But now I'm having an issue regarding this script only wanting to join with certain user accounts and they are all domain admins so I haven't figured out why exactly that's happening. Possibly certain password characters aren't supported to use with that script?? - narcispy 11 years ago
  • I have been tweaking that script recently and it seems to be working pretty well. I moved the registry additions to call script #2 to before the wsname call in the first script. I had wsname prompting me for the name and I think depending if you said ok to the reboot or not and just hit exit, it would not process the reg command.

    I have seen some rare instances of passwords that have odd characters not being passed properly in the script. You might try to use a user that is failing, change the password to something simple and retest the script. - jamie_kace 11 years ago
 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ