Netdom move

Applies To: Windows Server 2008, Windows Server 2008 R2

Moves a workstation or member server to a new domain. The act of moving a computer to a new domain creates an account for the computer on the domain, if it does not already exist.

Netdom is a command-line tool that is built into Windows Server 2008and Windows Server 2008 R2. It is available if you have the Active Directory Domain Services (AD DS) server role installed. It is also available if you install the Active Directory Domain Services Tools that are part of the Remote Server Administration Tools (RSAT). For more information, see How to Administer Microsoft Windows Client and Server Computers Locally and Remotely (https://go.microsoft.com/fwlink/?LinkID=177813).

To use netdom, you must run the netdom command from an elevated command prompt. To open an elevated command prompt, click Start, right-click Command Prompt, and then click Run as administrator.

For examples of how to use this command, see Examples.

Syntax

netdom move <Computer> {/d: | /domain:}<Domain> [/ou:<OUPath>] [{/ud: | /userd}[<Domain>\]<User> [{/pd: | /passwordd}{<Password>|*}] [{/uo: | /usero}[<Domain>\]<User> [{/po: | /passwordo}{<Password>|*}]] [{/uf: | /userf}[<Domain>\]<User> [{/pf: | /passwordf}{<Password>|*}]] [/reboot[:<Delay>]] [{/help | /?}]

Parameters

Note

When you move a computer running Windows NT 4.0 or earlier to a domain, the operation is not transacted. This means that a failure during the operation might leave the computer in an undetermined state with respect to the domain to which you intended to move it.

Note

When you move a computer to a new domain, netdom move does not delete its computer account in the former domain. However, if you supply credentials for the former domain, netdom move disables the old computer account.

Note

The act of moving a computer to a new domain creates an account for the computer on the domain, if one does not already exist.

Parameter Description

<Computer>

Specifies the name of the computer that you want to move.

{/d: | /domain:}<Domain>

Specifies the domain to which you want to move the account. If you do not specify the parameter, then netdom move uses the domain to which the current computer belongs.

/ou:<OUPath>

Specifies the organizational unit (OU) under which to create the account. This must be the full RFC 1779 distinguished name of the OU. If you do not specify this parameter, netdom move creates the account under the default OU for computer objects for that domain.

{/ud: | /userd}[<Domain>\]<User>

Specifies the user account that makes the connection with the domain that you specify in the /d or /domain parameter. If you do not specify this parameter, netdom move uses the current user account.

{/pd: | /passwordd}{<Password>|*}

Specifies the password of the user account that you specify in the /ud or /userd parameter. If you specify the value of this parameter as a wildcard character (*), this parameter prompts you for the password.

{/uo: | /usero}<User>r

Specifies the user account to make the connection with the computer that you want to move. If you do not specify this parameter, netdom move uses the current user account.

{/po: | /passwordo}{<Password>|*}

Specifies the password of the user account that you specify in the /uo or /usero parameter. If you specify the value of this parameter as a wildcard character (*), this parameter prompts you for the password.

{/uf: | /userf}<User>

Specifies the user account to make the connection with the computer's former domain (of which the computer had been a member prior to the move). This parameter is used to disable the old computer account.

{/pf: | /passwordf}{<Password>|*}

Specifies the password of the user account that you specify in the /uf or /userf parameter. If you specify the value of this parameter as a wildcard character (*), this parameter prompts you for the password.

/reboot[:<Delay>]

Specifies to shut down and automatically restart the computer after the move has completed. The Delay value is the number of seconds before automatic shutdown occurs. The default Delay value is 20 seconds.

{/help | /?}

Displays help at the command prompt.

Examples

To move mywksta from its current domain into the mydomain domain, type the following command at the command prompt:

netdom move /d:mydomain mywksta /ud:mydomain\admin /pd:password

If the destination is an AD DS domain, this command updates the Security ID history (SIDHistory) for the workstation, retaining the security permissions that the computer account had previously.

Additional references

Command-Line Syntax Key

Netdom

Netdom add

Netdom computername

Netdom join

Netdom query

Netdom remove

Netdom movent4bdc

Netdom renamecomputer

Netdom reset

Netdom resetpwd

Netdom trust

Netdom verify