5
Earu
2y

So I’ve been working on a tool to do offline domain joining in an active directory for about a month in my company, and so far everything is functional and done EXCEPT that one thing.

Essentially to do an offline domain junction, you need an AD account that has sufficient privileges on the domain controller. It will then generate a key that you can use on the client machine to make the junction to the domain.

I have tried literally every possible option that I could think of and I cannot for the life of me figure out why the client machine does not accept the generated key. I’m using methods from the Netapi32.dll which are barely documented anywhere, I even searched on GitHub code references and I couldn’t find much… Theres also a tool called djoin.exe that supposedly does that, I’ve tried with that tool too, to no avail.

This is the last thing missing for the project to be complete, and it’s pretty essential as well…

So close yet so far….

If anybody here knows anything about that kind of stuff (admittedly very niche) I’ll take anything.

Note: I think I’ve browsed all the websites and forums referencing to these functions and the tool now…

Comments
Add Comment