Computer account removal

J

jtaylor

Quick question that I believe I already have the answer
too. Do you have to manually remove a COMPUTER account
from a domain in Active Directory, just like a User
account? Or will it automatically remove the account
after a set time of not seeing it on a domain. An
example, a PC was originally named "A", and you rename
it "B", will Active Directory automatically remove it, or
do you have to manually remove it??

Thanks
James Taylor
 
S

Simon Geary

You would have to delete it manually, there is no automatic cleaning up of
computer or user accounts.
 
D

Darren D

DNS entries I think it would clean it self up, however computer and user
account its a manual process..

Hope this helps..
 
P

ptwilliams

If you rename a workstation or member server, AD wont create a new account
and leave the old one - it will rename the account in the AD.

DNS will require scavenging to clean out stale records - it's not automatic
by default.

--

Paul Williams
_________________________________________
http://www.msresource.net - Under construction, but coming soon...


Join us in our new forums!
http://forums.msresource.net
_________________________________________


DNS entries I think it would clean it self up, however computer and user
account its a manual process..

Hope this helps..
 
C

Cary Shultz [A.D. MVP]

And to join this discussion - you might want to swing over to
http://www.joeware.net and take a look at his free Win32 tools, specifically
looking for oldcmp.

This wonderful little utility will be able to find all of the computer
account objects that have not been used for, by default, 90 days. How does
it do that? Well, it looks at the secret password that every computer
account object has with a DC ( you know, all this nice fun NETLOGON stuff )
and looks to see if it ( the secret password ) has been changed in the last,
by default, 90 days. If it has not been changed in the last 90 days then
there is a very strong possibility that you can delete this computer account
object ( as the secret password is changed every 30 days, by default ).

This is just an additional piece of information for you when it comes to
removing computer account objects in a WIN2000 AD environment. It may be
useful for you when you feel the need to do a little "house cleaning".

HTH,

Cary
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Questions Regarding Removing/Renaming Workstations 3
Computer Accounts 1
Logon to domain with no computer account 1
logon with unknown account on 10 computers 1
Privelages for Local Security Group Management 2
DC REMOVAL 1
unable to remove Active Directory using dcpromo on a Windows 2003 Server with sp1 installed 15
Mass attribute change within AD user accounts 2

Top