Solved

Does active directory always have to set up a new user account on XP machines?

Posted on 2011-03-23
7
330 Views
Last Modified: 2012-05-11
I am migrating a novell 5.1 network to Server 2008 R2.  I have the luxury of setting up the new server and testing it, tweaking, without going live until I know everything is working.  I've set up active directory, DNS, etc.  My first XP machine logged into the new server without problem except that it created a new user on the client. (I now have Scott (old user name) and scott.ids (new user name) under documents and settings on my XP machine.  Our machines are 90% XP and a few new computers with Windows 7.  I didn't realize this would be the case, I assumed I could use the employees current user name on their computer.  Is there a way to make this happen?  Otherwise, each machine that connects to the new Domain server has to create a new user account on the clients machine? I would then have to migrate all data from their old user account to the new one?  I have a very simple network.  The server will function as DNS, File Server, and we may at a later date migrate a SQL database to the box.  Is there a setting in Active Directory that allows me to use the current clients user name?
0
Comment
Question by:SMcDonald666
  • 3
  • 2
  • 2
7 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 35199409
Yes - the local account cannot be used on domains - a new domain account is created on the DC, which will have a new profile associated with it on the local machine
0
 
LVL 9

Expert Comment

by:jerrypd
ID: 35199425
unfortunately, active directory sees the new user a a totally different user than the one that exists in the computer, therefore it has to create the new user.
i haven't run across any programs (other than the migrate user wizard in SBS world) that does this for you...
0
 

Author Comment

by:SMcDonald666
ID: 35199678
So if I have 10 employees and one day a machine goes down.  I ask employee Alex to use John's machine because he is not in today.  What happens when Alex tries to login to the domain on Alex's computer?  Does he have to know John's password? or can he login as alex?
Thanks,
Scott
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 70

Expert Comment

by:KCTS
ID: 35199720
He can log in with his own domain account - domain accounts are held on the DC - not on the local computer
0
 
LVL 9

Expert Comment

by:jerrypd
ID: 35199753
what KCTS says is true, but there is a caveat here - Alex is not an administrator to Johns local machine, so there may be issues running certain programs that need local administrator rights.
In addition, a new profile will be created on Johns machine for Alex (unless you have roaming profiles set up).
0
 

Author Comment

by:SMcDonald666
ID: 35199797
Jerrypd:  You hit-on what I was looking for.  We have a conference room computer that we allow anyone to logon to.  I don't want to have 25 users accounts on this machine.  So using a roaming profile allows other users to logon to a domain without creating a new users on the individual machine?
0
 
LVL 70

Accepted Solution

by:
KCTS earned 500 total points
ID: 35199836
You don't have to create 25 local user accounts !!

The domain user accounts are created on the DC and can be used by any user from any machine.

When a user logs on to a machine for the first time a local profile will be created - but this is NOT creating a new user !!!

Roaming profiles can be useful - but they can slow doen your network - esoecially inf you don't impliment folder redirection.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article runs through the process of deploying a single EXE application selectively to a group of user.
In-place Upgrading Dirsync to Azure AD Connect
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question