Skip to content
Posted by Ronny de Jong2 Comments on Apply computer account AD membership changes without reboot required .

Apply computer account AD membership changes without reboot required


Applying AD group membership changes for computer account(s) without a reboot required? Use klist.exe (Kerberos List) which is part of the Windows 2003 Resource Kit tools. Install the resource toolkit and copy klist.exe to the appropriate computer.

Start a CMD-box  in elevated rights after the computer account is added to the appropriate AD security group and use the following command to purge kerberos ticket on the affected computer:

“klist.exe purge”

As simple as that…

Categories

.

Tags

, , , ,

2 thoughts on “Apply computer account AD membership changes without reboot required Leave a comment

  1. Hi,

    I made the command on a 2k8 server and after, I did an gpupdate /force and gpresult /R /Scope “computer”

    My group membership stays the same.

    The old groups which the server was a member remain and the new ones don’t appear.

    Reply

  2. same result, this isn’t correct. The command prompt has to be opened as the “system account”.

    Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: