[Samba] "NetJoinLegacyAccountReuse" registry will be disabled in the near future.
europa JP
europa.wp at gmail.com
Thu Dec 14 04:54:22 UTC 2023
Dear Samba Team Member,
Joining a PC to a domain controller configured with Samba is a task we
all experience frequently.
However, due to the workings of Windows Update released on October 11,
2022, it has not worked well at times. I encountered this when I
joined a PC to an NT4 domain controller (samba-4.10.18).
KB5020276-Netjoin: Domain join hardening changes:.
https://support.microsoft.com/en-au/topic/kb5020276-netjoin-domain-join-hardening-changes-2b65a0f3-1f4c-42ef-ac0f-1caaf421baf8
NOTE: During that period we should have seen the following error message.
"An account with the same name exists in Active Directory. Re-using
the account was blocked by security policy."
We are currently able to work around this by setting up a
"NetJoinLegacyAccountReuse" registry before joining the domain.
However, the aforementioned URL was revised on August 10, stating that
this registry will be disabled in the Windows Update scheduled for
release on February 13, 2024.
I would like to know if there is a solution to this future change by
modifying the Samba configuration.
Best Regard,
europa
More information about the samba
mailing list