Delete computer account from AD vs Removing it from Domain
Hello,
My supervisor says it is better to remove a computer from the domain instead of deleting it from Active Directory when the PC is only going to be rebuilt under a new name anyways. Is this correct, or does it make no difference? I ask only because sometimes a PC gets rebuilt before it is removed from the domain, and by that point it is too late anyways. He also says that when a PC is removed from the domain, all information about the PC account is removed more cleanly vs just deleting the account. Is this correct as well?
Thanks,
Mike
My supervisor says it is better to remove a computer from the domain instead of deleting it from Active Directory when the PC is only going to be rebuilt under a new name anyways. Is this correct, or does it make no difference? I ask only because sometimes a PC gets rebuilt before it is removed from the domain, and by that point it is too late anyways. He also says that when a PC is removed from the domain, all information about the PC account is removed more cleanly vs just deleting the account. Is this correct as well?
Thanks,
Mike
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I don't know of any difference between the two methods.
... don't forget, computers also receive permission to resources either directly or via group membership (it's the computer's domain-account-SID that we're interested in preserving).