Offline Domain Join

w^rl0rdw^rl0rd Member Posts: 329
in MCSA / MCSE on Windows 2012 General
Hi, I'm having a hard time understanding some things about Offline Domain Join and I'm hoping you guys/gals can help.

I understand how to do one but what I don't understand is - does the computer ever actually join the domain? I mean, once it get's an IP and a network connection can a user log on and access domain resources?
· Share on FacebookShare on Twitter

Comments

  • BornToBeMildBornToBeMild Member Posts: 69 ■■□□□□□□□□
    Basically offline domain join separates the changes to AD and the changes to the computer. That way you don't need access to AD when you run the computer join bit. After rebooting the computer is a domain member, the same as any other. You still need to be on the company network with access to a DC to get authenticated against resources, it doesn't change that requirement.

    In 2012 they added the ability to include certificates and group policies to the "blob". That allows you to offline join a PC, then connect it via DirectAccess.
    · Share on FacebookShare on Twitter
  • bohackbohack Member Posts: 114
    I just did a video on this, you can view it here https://www.youtube.com/watch?v=4OX6C_FakII. In the past I used offline domain join and security connection policies to only allow computers that could authenticate, to be allow to hit my KMS server. This way, my work at home users I didn't have to burn a MAK key on. There are hundreds of obscure reasons for offline domain joining.
    ______________________________________________________________

    NetworkedMinds - http://www.youtube.com/networkedminds
    MCSA / MCSE Educational Channel
    · Share on FacebookShare on Twitter
  • lsud00dlsud00d Member Posts: 1,571
    Nice use of offline domain join bohack!
    · Share on FacebookShare on Twitter
  • w^rl0rdw^rl0rd Member Posts: 329
    Thanks for the clarification. I understand now.
    · Share on FacebookShare on Twitter
Sign In or Register to comment.