[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Reconfigure network, remove domain control for it's 5 PCs but maintane the Windows 2008 Server

Posted on 2014-02-07
9
Medium Priority
?
347 Views
Last Modified: 2014-02-07
I have a small network with one server, 3 PCs, a NAS, and a few printers.  It was configured as a domain and I want to remove each PC from the domain but still allow all the desktop PCs in the LAN to access the Windows 2008 Server for file sharing (it also hosts a FileMaker Pro database that is accessed locally from the desktop PCs) and all the LAN resources like the NAS and the printers.

I very little experience with the server management but am pretty technical and have been dealing with windows and networks for a long time.  I realize i can just go to active directory and remove the user, but what happens after that as far as getting access to the server and other resources on the local network?  

Beside file sharing, the server had also been used as an exchange server  but i have migrated exchange to a hosted solution.  All the server is really used for is "File Sharing" and a FileMaker Pro Server for a desktop database application.
0
Comment
Question by:AxeTracks
  • 5
  • 4
9 Comments
 

Author Comment

by:AxeTracks
ID: 39843728
Maybe what i need to do is to uninstall Active Directory Services, and uninstall or turn off the domain controller?
0
 
LVL 11

Expert Comment

by:Miftaul
ID: 39843735
Create local user account on the workstation, disjoin the workstation from the domain and map the network drive.

Deleting the user account on the AD will create issue for the users logging on their domain client machines.

For the printers, you can set workstations to ip printing.
0
 

Author Comment

by:AxeTracks
ID: 39843736
Is dis-joining different then deleting an active directory user?
0
Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

 
LVL 11

Expert Comment

by:Miftaul
ID: 39843743
Yes, its different.

A domain computer has two account in AD. One is user account and another is computer account. When you delete the user from the users ou, that user can not login to their computer.and another user with domain credential can still logon to the workstation.

When you disjoin, you disassociate the workstation account from the domain completely.
0
 

Author Comment

by:AxeTracks
ID: 39843753
interesting.  Each PC in this LAN is on the Domain, and each user in this office has a domain login on "each" PC...  so if created a local account on one of the PCs and then disjoined that PC in AD... users could still login to the domain on one of the other PCs... ?
0
 
LVL 11

Accepted Solution

by:
Miftaul earned 2000 total points
ID: 39843757
Yes, user will still be able to logon to the domain using another domain joined machine. We need to disable the user account so that it can not be used or even delete the user account later.

When we dis-join the workstation from the AD, the users domain credential will not allow him/her to logon to the workstation. Thats the reason, we created a local user account , so that s/he can logon to the workstation using this local credential.

If you just remove a user account from the AD, not dis-joining the workstation from the AD. Other domain users can still login to the workstation right, because the workstation is still joined the domain.

Say UserA users ComputerA which is in a Domain called abc.local. Now abc,local has other user account as well like UserB, UserC, UserD etc. If you delete the UserA account on the AD, then UserA will not be able to access the ComputerA, but ComputerA is still joined in the domain. And another domain user UserB can logon to ComputerA using his/her domain credential.

What I am saying is,
1. Disjoin the workstation from the domain. Now no domain user can logon to the workstation.
2. Login to the ComputerA as administrator and create a local user account.
3. Share that local account creadentoial with the userA, so s/he can logon to the machine.
4. Map the servers drive for the user.
0
 

Author Comment

by:AxeTracks
ID: 39843761
You have offered me very excellent support.  Thank you.
0
 

Author Closing Comment

by:AxeTracks
ID: 39843762
I asked a question that was not very thought out and got excellent guidance.  Thank you
0
 
LVL 11

Expert Comment

by:Miftaul
ID: 39843769
Thanks AxeTracks.
0

Featured Post

[Webinar] Cloud and Mobile-First Strategy

Maybe you’ve fully adopted the cloud since the beginning. Or maybe you started with on-prem resources but are pursuing a “cloud and mobile first” strategy. Getting to that end state has its challenges. Discover how to build out a 100% cloud and mobile IT strategy in this webinar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The System Center Operations Manager 2012, known as SCOM, is a part of the Microsoft system center product that provides the user with infrastructure monitoring and application performance monitoring. SCOM monitors:   Windows or UNIX/LinuxNetwo…
User Beware!  This is a rather permanent solution to removing your email from an exchange server.  The only way to truly go back is to have your exchange administrator restore your mailbox from backups.  This is usually the option of last resort.  A…
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
If you’ve ever visited a web page and noticed a cool font that you really liked the look of, but couldn’t figure out which font it was so that you could use it for your own work, then this video is for you! In this Micro Tutorial, you'll learn yo…

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question