Reverting snapshots in domain issue, any workaround?

I have some development systems that have snapshots running on them that are in a clean state and can get reverted to. I know the pitfalls of snapshots but in this case they are helpful, disk I/O isn't an issue, and if they are lost it is not a huge deal.

The problem I have is that after rolling the snapshot back they lose connection to the domain and I have to rejoin them to resolve the issue. I have experienced this before and know it has to do with passwords and authentication but would like to know if anyone knows a way to resolve the issue.
LVL 10
ThorinOAsked:
Who is Participating?
 
Darius GhassemConnect With a Mentor Commented:
You would need to run command manually since netdom resets the computer account secure channel password with the domain controller.

http://www.howtonetworking.com/vista/resetsecurechannel.htm
0
 
Luciano PatrãoICT Senior Infraestructure  Engineer  Commented:
Hi

If I understand I mean rollback a snapshot from a DC?

If yes, I will never, but never recommend this. This is bring many issues into your AD, not only password etc.

Snapshots is not a backup, snapshots is a image state from a particularly time. And I do not recommend that use snapshots after 48h.

Is there any more DCs in this Domain?

Check this article:
http://blogs.technet.com/b/askds/archive/2009/06/05/dc-s-and-vm-s-avoiding-the-do-over.aspx

This is a good point

Jail
0
 
Darius GhassemCommented:
There is no way to avoid the actually problem since the secure channel password is running an old version when you run a snapshot to go to the past this is why you must remove from domain then re-add this resets the secure channel password with the Domain which allows computer to authenticate with the domain controllers.

You can run netdom as well if you want to reset secure channel password.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
ThorinOAuthor Commented:
I am looking to do the snapshots on member servers not the DC. I have been doing the rejoin method but this puts the burden on me or I need to train development. Would it be possible like you mentioned dariussg to put some batch file on the desktop that would reset the secure channel password and restart the server so that I would just need to revert the snapshot and run the batch file?
0
 
Luciano PatrãoICT Senior Infraestructure  Engineer  Commented:
Hi

But why don't you just use a backup tool?? Free or not, rather then using snapshots?

Jail
0
 
ThorinOAuthor Commented:
Could I just make a batch file on the desktop with that command specific to the system then have the same batch file reboot?
0
 
Darius GhassemCommented:
Yeah you could
0
 
ThorinOAuthor Commented:
I think I will give that a try.
0
All Courses

From novice to tech pro — start learning today.