I have this in a .CMD file that SMS pushes once per WinXP PC to handle our imaged systems joining the domain:
net stop wuauserv REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v AccountDomainSid /f REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v PingID /f REG DELETE "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate" /v SusClientId /f net start wuauserv wuauclt /resetauthorization /detectnow Note for Vista / Win7 this is not needed, the WSUS GUID is not longer tied to that key. David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Thursday, July 08, 2010 5:27 AM To: NT System Admin Issues Subject: RE: Duplicate SID's I run the below out as a machine script to make sure that is done.. First two lines are just to keep it from running more than once. Every once in a while I will delete all the desktops in WSUS and increment the if exist file to make them all re-register. Keeps WSUS pretty clean and happy. if exist c:\wsus6.txt goto end echo %date% %time% >> c:\wsus6.txt reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v AccountDomainSid /f reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v PingID /f reg delete HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate /v SusClientId /f net stop wuauserv rmdir /s /q softwaredistribution net start wuauserv wuauclt /resetauthorization /detectnow :end From: James Rankin [mailto:kz2...@googlemail.com] Sent: Thursday, July 08, 2010 8:16 AM To: NT System Admin Issues Subject: Re: Duplicate SID's You need to delete HKLM\Software\MS\Windows\CurrentVersion\WindowsUpdate entries for SusClientID Apparently Windows 2008 sysprep has got around this issue and resets the WSUS id for you On 8 July 2010 13:13, N Parr <npar...@mortonind.com<mailto:npar...@mortonind.com>> wrote: One annoying thing I found is you won't see all the machines using the same SID in WSUS. You will only see the last machine that talked to WSUS in your computers listing. ________________________________ From: Anders Blomgren [mailto:chanks...@gmail.com<mailto:chanks...@gmail.com>] Sent: Thursday, July 08, 2010 6:40 AM To: NT System Admin Issues Subject: Re: Duplicate SID's Duplicate sids aren't that much of an issue, excepting the local user security issue. Not running sysprep is an issue. It resets all sort of other things. -Anders On Tue, Jul 6, 2010 at 8:08 PM, Kennedy, Jim <kennedy...@elyriaschools.org<mailto:kennedy...@elyriaschools.org>> wrote: Seems pretty authoritative that duplicate SID's on machines in a domain are not a problem. Opinions gang? http://blogs.technet.com/b/markrussinovich/archive/2009/11/03/3291024.aspx -- "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question." ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~