Reputation: 4319
Is it possible to query AD from a machine that is not attached to the domain?
I am writing a small c# app to run at startup when a new machine is booted, connected to our corporate network.
I have some code which checks whether a machine account for the machine already exists on the domain, and if so deletes it, prior to joining the machine to the domain.
This works fine on my computer, which already has the trust set up to the domain, but doesn't from a test machine which is not yet joined.
Is there a way round this? Not sure if this is one for Serverfault or Stackoverflow - so hedging my bets!
Upvotes: 0
Views: 533
Answers (1)
Reputation: 13641
Yes you can, via LDAP, as long as you can connect to a domain controller via your underlying network transports (ie- TCP/IP). You'll need to bind to Active Directory under the context of a domain user who has at least read access to the directory. You'll also need to specifically call out which domain controller you want to connect to as autodiscovery relies on a domain connection.
Upvotes: 2
Related Questions
- How do I get the domain name of a user from a machine not joined to the domain?
- How to use LDAP to Query Active Directory on different server
- How to access Active Directory from remote machine in c#
- Request Active Directory over internet
- Query AD users from outside the domain
- How to query Active Directory B if application server is in Active Directory A
- Accessing Active Directory From a Computer Not Part of the Domain With C# and Powershell
- Is there a way to find Active Directory on the network without providing any info in C#?
- Is it possible to find the local computer in AD without hardcoding its domain?
- get computer from OU