Netdom reset
Applies To: Windows Server 2008, Windows Server 2008 R2
Resets the secure connection between a workstation and a domain controller.
Netdom is a command-line tool that is built into Windows Server 2008 and Windows Server 2008 R2. It is available if you have the Active Directory Domain Services (AD DS) server role installed. It is also available if you install the Active Directory Domain Services Tools that are part of the Remote Server Administration Tools (RSAT). For more information, see How to Administer Microsoft Windows Client and Server Computers Locally and Remotely (https://go.microsoft.com/fwlink/?LinkID=177813).
To use netdom, you must run the netdom command from an elevated command prompt. To open an elevated command prompt, click Start, right-click Command Prompt, and then click Run as administrator.
For examples of how to use this command, see Examples.
Syntax
netdom reset <Computer> {/d: | /domain:}<Domain> [{/s: | /server:}<Server>] [{/uo: | /usero:}<User> {/po: | /passwordo}{<Password>|*}] [{/help | /?}]
Parameters
Parameter | Description |
---|---|
<Computer> |
Specifies the name of the computer whose secure connection you want to reset. |
{/d: | /domain:}<Domain> |
Specifies the domain with which to establish the secure connection. If you do not specify this parameter, then netdom reset uses the domain to which the current computer belongs. |
{/s: | /server:}<Server> |
Specifies the domain controller to use to establish the secure connection. |
{/uo: | /usero:}<User> |
Specifies the user account to use to make the secure connection with the computer that you want to reset. If you do not specify this parameter, then netdom reset uses the current user account. |
{/po: | /passwordo}{<Password>|*} |
Specifies the password of the user account that you specify in the /uo or /usero parameter. If you specify the value of this parameter as a wildcard character (*), this parameter prompts you for the password. |
{/help | /?} |
Displays help at the command prompt. |
Examples
To reset the secure channel secret that is maintained between mywksta and devgroup.contoso.com (regardless of OU), type the following command at the command prompt:
netdom reset /d:devgroup.contoso.com mywksta
To reset the secure channel between the Windows NT 4.0 primary domain controller (PDC) for Northamerica and the backup domain controller NABDC, type the following command at the command prompt:
netdom reset /d:Northamerica NABDC
Member servers often establish secure channel sessions with non-local domain controllers. To force a secure channel session between a member server and a specific domain controller by using the /server parameter with the Reset operation, type the following command at the command prompt:
netdom reset /d:devgroup.contoso.com mywksta /Server:mylocalbdc