Ignore:
Timestamp:
Jun 17, 2009, 2:19:52 PM (16 years ago)
Author:
Herwig Bauernfeind
Message:

Update 3.3 branch to 3.3.5

File:
1 edited

Legend:

Unmodified
Added
Removed

  • branches/samba-3.3.x/docs-xml/manpages-3/net.8.xml

    r224 r274  
    15831583
    15841584<refsect2>
     1585<title>DOM</title>
     1586
     1587<para>Starting with version 3.2.0 Samba has support for remote join and unjoin APIs, both client and server-side. Windows supports remote join capabilities since Windows 2000.
     1588</para>
     1589<para>In order for Samba to be joined or unjoined remotely an account must be used that is either member of the Domain Admins group, a member of the local Administrators group or a user that is granted the SeMachineAccountPrivilege privilege.
     1590</para>
     1591
     1592<para>The client side support for remote join is implemented in the net dom commands which are:
     1593<simplelist>
     1594<member>net dom join - Join a remote computer into a domain.</member>
     1595<member>net dom unjoin - Unjoin a remote computer from a domain.</member>
     1596</simplelist>
     1597</para>
     1598
     1599<refsect3>
     1600<title>DOM JOIN <replaceable>domain=DOMAIN</replaceable> <replaceable>ou=OU</replaceable> <replaceable>account=ACCOUNT</replaceable> <replaceable>password=PASSWORD</replaceable> <replaceable>reboot</replaceable></title>
     1601
     1602<para>
     1603Joins a computer into a domain. This command supports the following additional parameters:
     1604</para>
     1605
     1606<itemizedlist>
     1607
     1608<listitem><para><replaceable>DOMAIN</replaceable> can be a NetBIOS domain name (also known as short domain name) or a DNS domain name for Active Directory Domains. As in Windows, it is also possible to control which Domain Controller to use. This can be achieved by appending the DC name using the \ separator character. Example: MYDOM\MYDC. The <replaceable>DOMAIN</replaceable> parameter cannot be NULL.</para></listitem>
     1609
     1610<listitem><para><replaceable>OU</replaceable> can be set to a RFC 1779 LDAP DN, like <emphasis>ou=mymachines,cn=Users,dc=example,dc=com</emphasis> in order to create the machine account in a non-default LDAP containter. This optional parameter is only supported when joining Active Directory Domains.</para></listitem>
     1611
     1612<listitem><para><replaceable>ACCOUNT</replaceable> defines a domain account that will be used to join the machine to the domain. This domain account needs to have sufficient privileges to join machines.</para></listitem>
     1613
     1614<listitem><para><replaceable>PASSWORD</replaceable> defines the password for the domain account defined with <replaceable>ACCOUNT</replaceable>.</para></listitem>
     1615
     1616<listitem><para><replaceable>REBOOT</replaceable> is an optional parameter that can be set to reboot the remote machine after successful join to the domain.</para></listitem>
     1617
     1618</itemizedlist>
     1619
     1620<para>
     1621Note that you also need to use standard net paramters to connect and authenticate to the remote machine that you want to join. These additional parameters include: -S computer and -U user.
     1622</para>
     1623<para>
     1624        Example:
     1625        net dom join -S xp -U XP\\administrator%secret domain=MYDOM account=MYDOM\\administrator password=topsecret reboot.
     1626</para>
     1627<para>
     1628This example would connect to a computer named XP as the local administrator using password secret, and join the computer into a domain called MYDOM using the MYDOM domain administrator account and password topsecret. After successful join, the computer would reboot.
     1629</para>
     1630
     1631</refsect3>
     1632
     1633<refsect3>
     1634<title>DOM UNJOIN <replaceable>account=ACCOUNT</replaceable> <replaceable>password=PASSWORD</replaceable> <replaceable>reboot</replaceable></title>
     1635
     1636<para>
     1637Unjoins a computer from a domain. This command supports the following additional parameters:
     1638</para>
     1639
     1640<itemizedlist>
     1641
     1642<listitem><para><replaceable>ACCOUNT</replaceable> defines a domain account that will be used to unjoin the machine from the domain. This domain account needs to have sufficient privileges to unjoin machines.</para></listitem>
     1643
     1644<listitem><para><replaceable>PASSWORD</replaceable> defines the password for the domain account defined with <replaceable>ACCOUNT</replaceable>.</para></listitem>
     1645
     1646<listitem><para><replaceable>REBOOT</replaceable> is an optional parameter that can be set to reboot the remote machine after successful unjoin from the domain.</para></listitem>
     1647
     1648</itemizedlist>
     1649
     1650<para>
     1651Note that you also need to use standard net paramters to connect and authenticate to the remote machine that you want to unjoin. These additional parameters include: -S computer and -U user.
     1652</para>
     1653<para>
     1654        Example:
     1655        net dom unjoin -S xp -U XP\\administrator%secret account=MYDOM\\administrator password=topsecret reboot.
     1656</para>
     1657<para>
     1658This example would connect to a computer named XP as the local administrator using password secret, and unjoin the computer from the domain using the MYDOM domain administrator account and password topsecret. After successful unjoin, the computer would reboot.
     1659</para>
     1660
     1661</refsect3>
     1662
     1663</refsect2>
     1664
     1665<refsect2>
     1666
    15851667<title>HELP [COMMAND]</title>
    15861668
Note: See TracChangeset for help on using the changeset viewer.