Mar 22

netdom join Error 53, Error 2, DNS is correct. Windows 2012 R2 doesn’t like /ou

We have been using a script for years that will join a Windows system to our domain.  Now with 2012 R2 it never executed.  And this was not a DNS issue.  Ping your DC’s with the friendly name from the system first and if they resolve you are good.

At first I thought was an issue with our 2012 R2 domain controllers.  Apparently after researching this I saw that a duplicate SPN check can cause this.  https://support.microsoft.com/en-us/kb/3070083

Patch your DC’s this hotfix was incorporated into later patches so if your up-to-date then you should be fine.

Remove the /ou section of your netdom join statement.  It worked for us for years, but now it just throws a error every time.  And before you say anything I tried using CN for the computers section most of the time.  Our statement was:

netdom join $serverName /d:$Domain /ou:”OU=Computers,DC=cloud,DC=digitalsos,DC=com” /ud:SOS\joinUS /pd:$decrypted /reboot:20 >> $logfile

Now it’s just:

netdom join $serverName /d:$Domain /ud:joinUS /pd:$decrypted /reboot:20 >> $logfile

Hopefully you won’t throw away a week of your time chasing this down.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>