NONEXECUTABLE Listing 1: Script to Update the Local Administrators Group and Move Servers to a New Domain @echo off CLS Rem This utility copies the existing Northamerica administrative Rem grouping structure to each server/domain controller Rem and relocates the server to the USA-PLEASANTON domain Rem Rem ===================================================================== Rem | Written by Robert Pierce | Rem ===================================================================== Rem Rem This utility relies on the following resource kit utilities: Rem netdom.exe Rem sleep.exe Rem shutdown.exe if .%1==. goto help if "%1"=="/?" goto help Rem p1 parameter is the site code for the resource domain Rem p2 parameter is the name of the new resource domain set common=\\psp-common-01\migration\common set logfile=c:\temp\move_server.log set siteadm=%1 set newdomain=%2 Rem initialize log file @echo. > %logfile% cls @echo This may take a few minutes... %common%\sleep 5 Rem Setting Administrative structure @echo Setting Administrative structure including %siteadm% admins. >> %logfile% @echo setting administrative structure... @echo Setting global administration structure... net localgroup administrators /add NORTHAMERICA\GLOBALADMINS >> %logfile% net localgroup administrators /add NORTHAMERICA\%1-NetSvcs > %logfile% Rem Move the server to the new resource domain @echo. @echo Creating computer account in domain %newdomain% @echo Creating computer account in domain %newdomain% >> %logfile% @echo %common%\netdom /user:NORTHAMERICA\migadm /password:migadm /domain:%newdomain% MEMBER %computername% /add >> %logfile% %common%\netdom /user:NORTHAMERICA\migadm /password:migadm /domain:%newdomain% MEMBER %computername% /add >> %logfile% @echo. @echo Joining domain %newdomain% @echo Joining domain %newdomain% >> %logfile% @echo %common%\netdom /user:NORTHAMERICA\MIGACCOUNT /password: /domain:%newdomain% MEMBER %computername% /JOINDOMAIN > %temporary%\netdom.log >> %logfile% %common%\netdom /user:NORTHAMERICA\MIGACCOUNT /password:LETMEDOIT /domain:%newdomain% MEMBER %computername% /JOINDOMAIN > %temporary%\netdom.log >> %logfile% Rem Sleep for 40 seconds and give the computer time to join the new domain %common%\sleep 40 Rem ================================================================ Rem Reboot the server to implement the change to the domain Rem Reboot is necessary so that ACLs across the trusts will work properly cls @echo Press CTRL+C to abort the reboot; press any other key to reboot this system. >> %logfile% @echo Press CTRL+C to abort the reboot; press any other key to reboot this system. @echo Be aware that ACLs will not work properly until you reboot system! >> %logfile% @echo Be aware that ACLs will not work properly until you reboot system! pause %common%\shutdown /L /R /T:00 /C /Y