September 2003
Intermediate to advanced
624 pages
15h 49m
English
Content preview from Active Directory CookbookBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
2.9. Changing the Mode of a Domain
Problem
You want to change the mode of a Windows 2000 Active Directory domain from mixed to native. You typically want to do this as soon as possible after installing a Windows 2000 domain to take advantage of features that aren’t available with mixed-mode domains.
Solution
Using a graphical user interface
Open the Active Directory Domains and Trusts snap-in.
Browse to the domain you want to change in the left pane.
Right-click on the domain and select Properties. The current mode will be listed in the Domain Operation Mode box.
To change the mode, click the Change Mode button at the bottom.
Using a command-line interface
To retrieve the current mode, use the following command:
> dsquery * <DomainDN> -scope base -attr ntMixedDomainOr you can use the enumprop command found in the
Windows 2000 Resource Kit.
> enumprop /ATTR:ntMixedDomain "LDAP://<DomainDN>"To change the mode to native, create an LDIF file called change_domain_mode.ldf with the following contents:
dn: <DomainDN>
changetype: modify
replace: ntMixedDomain
ntMixedDomain: 0
-Then run the ldifde command to import the change.
> ldifde -i -f change_domain_mode.ldf
Using VBScript
' This code changes the mode of the specified domain to native
' ------ SCRIPT CONFIGURATION ------
strDomain = "<DomainDNSName>" ' e.g. amer.rallencorp.com ' ------ END CONFIGURATION --------- set objDomain = GetObject("LDAP://" & strDomain) if objDomain.Get("nTMixedDomain") > 0 Then Wscript.Echo "Changing mode to native . ...