Description of Netdom.exe Syntax and Versions

Article translations Article translations
Article ID: 329721 - View products that this article applies to.
This article was previously published under Q329721
Expand all | Collapse all

On This Page

SUMMARY

You can use the Netdom.exe tool to reset the secure channel between a workstation, server, or domain controller. This article describes the syntax for variations that you can use with Netdom.exe.

MORE INFORMATION

When you use Netdom.exe, the operating system of the computer on which you are running the command determines the Netdom.exe version and syntax. The domain you are joining does not affect the Netdom.exe version and syntax.
  • To run Netdom.exe from a Windows NT 4.0-based computer, use Netdom.exe version 1.8 and the Windows NT 4.0 syntax.
  • To run Netdom.exe from a Microsoft Windows 2000-based computer, use Netdom.exe 2.0 and the Windows 2000 syntax.

Windows NT 4 (Netdom.exe 1.8)

Use the following syntax to join an Windows NT 4.0 member to Windows NT 4.0 or Windows 2000 domain:

netdom /domain:domain_name /user:admin_user /password:password /member computer_name /joindomain


NOTE: You do not have to restart your computer when you join from the command line. Log off and log back on to make the change.

For additional information about how to join a Windows NT 4.0 member to a Windows NT 4.0 or Windows 2000 domain, click the following article number to view the article in the Microsoft Knowledge Base:
150493 How To Join a Domain From the Command Line
Use the following syntax to reset a Windows NT 4.0 member to a Windows NT 4.0 or Windows 2000 domain:

netdom member \\computer_name /joindomain


For additional information about how to reset a Windows NT 4.0 member to a Windows NT 4.0 or Windows 2000 domain, click the following article number to view the article in the Microsoft Knowledge Base:
175024 Resetting Domain Member Secure Channel
Use the following syntax to reset a Windows NT 4.0 backup domain controller (BDC) secure channel to a Windows NT 4.0 or Windows 2000 domain:

netdom bdc bdc_computer_name /reset


For additional information a related topic, click the following article number to view the article in the Microsoft Knowledge Base:
150518 NetLogon Service Fails When Secure Channel Not Functioning

Windows 2000 (Netdom 2.0)

  • Use the following syntax to reset a Windows 2000 member computer from a Windows NT 4.0 or Windows 2000 domain:

    netdom reset computer_name /domain:domain_name


    For additional information about how to reset a Windows 2000 member computer from a Windows NT 4.0 or Windows 2000 domain, click the following article number to view the article in the Microsoft Knowledge Base:
    216393 Resetting Computer Accounts in Windows 2000 and Windows XP
  • Use the following syntax to reset a Windows 2000 member from a Windows 2000 domain controller:

    netdom reset computer_name /domain:domain_name /usero:local_admin /passwordo:*


    For additional information about how to reset a Windows 2000 member from a Windows 2000 domain controller, click the following article number to view the article in the Microsoft Knowledge Base:
    216393 Resetting Computer Accounts in Windows 2000 and Windows XP
  • To reset a domain controller in a Windows 2000 domain:
    1. Stop the Kerberos Key Distribution Center (KDC) service, and then set it to Manual startup.
    2. Run the netdom resetpwd /server:replication_partner_server_name /userd:domain_name\admin_user /passwordd:* command.
    3. Restart the computer, start the KDC, and then set it back to Automatic startup.
    For additional information about how to reset a domain controller in a Windows 2000 domain, click the following article number to view the article in the Microsoft Knowledge Base:
    260575 HOW TO: Use Netdom.exe to Reset Machine Account Passwords of a Windows 2000 Domain Controller
  • Use the following syntax to join a Windows 2000 member to a Windows NT 4.0 or Windows 2000 domain:

    netdom join computer_name /domain:domain_name /userd:domain_admin /passwordd:* /usero:local_admin /passwordo:*


    NOTE: You do not have to restart your computer when you join from the command line. Log off and log back on to make the change.

    For additional information about how to join a Windows 2000 member to a Windows NT 4.0 or Windows 2000 domain, click the following article number to view the article in the Microsoft Knowledge Base:
    266651 Using Netdom 2.0 to Create Computer Accounts on Admin-Specified Domain Controllers
  • Use the following syntax to join a BDC to a Windows 2000 domain:
    1. netdom add computer_name /domain:domain_name /userd:domain_admin /passwordd:* /dc
    2. Install the operating system as a BDC in the Windows 2000 domain.
In some cases you may have a large number of computers you want to run Netdom.exe against.

Properties

Article ID: 329721 - Last Review: February 26, 2007 - Revision: 5.2
APPLIES TO
  • Microsoft Windows NT Server 4.0 Standard Edition
  • Microsoft Windows 2000 Professional Edition
  • Microsoft Windows NT Workstation 4.0 Developer Edition
Keywords: 
kbinfo KB329721

Give Feedback

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com