By default all computer objects are created under the Computers container and in this Tutorial we are going change (redirect) this default location to a new organization unit (OU).
In the image below we can see that a few servers were added to the domain and as usual they were created in the Computers container.
Group Policies are applied at Site, Domain or Organization Unit level however the Computers is a container and cannot have an OU assigned to it, as shown in the image below using Group Policy Management console. In some companies the newly joined computers may require to receive a GPO right away.
Validating the prerequisites…
Before planning to use an OU to be the default location for new computer objects we must make sure that the domain level is at least Windows Server 2003.
We can find that information by right-clicking on the domain name, and then Properties in Active Directory Users and Computers.
Configuring an Organization Unit (OU)…
The first step is to create a new OU and we can use the same Active Directory Users and Computers to create the new OU. I would recommend to use the default setting Protect container from accidental deletion. In our Tutorial we are going to name the new OU as InitialOU
Having the new OU created, we just need to run the redircmp and the distinguished name for the new OU. The following example below uses our newly created OU located at the root of the patricio.local domain.
Testing the redirection…
Let’s get any server or workstation that is not in the domain and join to the domain. In our example below we have a server named POASRV01, let’s open Server Manager, and then click on Local Server and finally in workgroup.
In the new window, click on Change…, and in the Computer Name/Domain Changes select Domain and type in the domain name, and finally click OK. After that fill the credentials out and click OK and the result will be similar to the figure below.
After the message informing that the server was added successfully to te domain, we can click on InitialOU and we will have the new computer account created on the new location.