CN105653342A - Method and system for achieving automatic domain entering of Windows pool desktop - Google Patents
Method and system for achieving automatic domain entering of Windows pool desktop Download PDFInfo
- Publication number
- CN105653342A CN105653342A CN201610069104.7A CN201610069104A CN105653342A CN 105653342 A CN105653342 A CN 105653342A CN 201610069104 A CN201610069104 A CN 201610069104A CN 105653342 A CN105653342 A CN 105653342A
- Authority
- CN
- China
- Prior art keywords
- virtual machine
- territory
- pond
- desktop
- domain information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/44—Arrangements for executing specific programs
- G06F9/445—Program loading or initiating
- G06F9/44505—Configuring for program initiating, e.g. using registry, configuration files
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Stored Programmes (AREA)
Abstract
The invention provides a method and system for achieving automatic domain entering of a Windows pool desktop. The method comprises the steps that 1, a virtual machine of a Microsoft server system is created; 2, a pool desktop virtual machine is created; 3, the virtual machine of the Microsoft server system is started, and domain entering information is created in an AD domain service component through a server; 4, the server writes the domain entering information into an authentication disk; 5, the pool desktop virtual machine is started, and a client reads the domain entering information from the authentication disk; 6, the client writes the domain entering information into a Windows authentication component; 7, a user logs in the pool desktop virtual machine and authenticates the domain entering information in the Windows authentication component and the domain entering information in the AD domain service component, and if the domain entering information in the Windows authentication component is in accordance with that in the AD domain service component, it is shown that automatic domain entering of the pool desktop virtual machine succeeds, otherwise, automatic domain entering of the pool desktop virtual machine fails. By means of the system for achieving automatic domain entering of the Windows pool desktop, the problem that automatic domain entering of the pool desktop cannot be achieve is solved.
Description
Technical field
The present invention relates to field of cloud computer technology, particularly relate to a kind of Windows pond desktop and automatically enter the method and system in territory.
Background technology
The development of Intel Virtualization Technology drives the rise of cloud desktop industry, tradition PC is slowly substituted by cloud desktop, at VDI (VirtualDesktopInfrastructure, i.e. virtual desktop architecture) environment enforcement in adopt AD server (ActiveDirectory is the directory service towards WindowsStandardServer, WindowsEnterpriseServer and WindowsDatacenterServer) manage virtual machine.
Traditional to enter territory method be after creating virtual machine, manually configures the domain information of computer in an operating system, it is intended that domain addresses, enters territory user profile and reaches Windows computer and enter the purpose in territory. This employing manually enters the method inefficiency in territory, when creating multiple stage VM (VirtualMachine, i.e. virtual machine) under VDI environment, virtually brings, to manager, the workload that tool is big; And after adopting and manually entering territory, domain server can update the computer SID into pond, territory desktop in use for some time, if now restarted by pond desktop, when system reducing is to template, corresponding SID also reduces, and causes that into territory unsuccessfully user cannot login system.
At the Chinese invention that application number is 201410820893.4 of December in 2014 application on the 23rd, relating to a kind of method that Windows virtual machine image enters territory automatically, this invention creates a virtual machine first by the original image of Windows virtual machine; Then extract Windows virtual machine and the catalog file in mirror image is installed, and open; Then the contents extraction of the associated component in catalog file is out generated a new answer file; Answer file is saved in Windows virtual machine, and uses system preparation tool to become one reflection is installed the configuration packages of answer file in virtual machine; After encapsulation, Windows virtual machine automatic shutdown, then postboost virtual machine is packaged into a new Windows virtual machine image;Then, after using the virtual machine activation that new Windows virtual machine image creates, perform once to initialize, regenerate a new SID; Last Windows virtual machine can enter territory with new SID. This invention automatically enters the purpose in territory also for solving virtual machine, but its processing method is more complicated.
Summary of the invention
One of the technical problem to be solved in the present invention, it is in that to provide a kind of Windows pond method that desktop enters territory automatically, in the process according to template establishment pond desktop virtual machine, it is operated by domain server, and territory key operation is carried out when pond desktop system starts, so just meeting Windows enters the condition in territory, verifies that when Netlogon process initiation whether key is consistent with data in domain server, completes automatically to enter the function in territory.
One of problem of the present invention, is achieved in that
The method that a kind of Windows pond desktop enters territory automatically, described method comprises the steps:
Step 1, create the virtual machine of a Microsoftserver system, the virtual machine of this Microsoftserver system is provided with an AD territory serviced component and a service end;
Step 2, basis have entered the virtual machine template in territory and have created a pond desktop virtual machine, are provided with a client and a Windows certified component in this pond desktop virtual machine;
Step 3, start Microsoftserver system virtual machine, create into domain information under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory;
Step 4, described service end by described enter domain information be written to correspondence certification dish store;
Step 5, start pond desktop virtual machine, described client read from described certification dish described in enter domain information;
Step 6, described client are written to described Windows certified component by entering domain information described in reading;
Step 7, user log in pond desktop virtual machine, are verified by the domain information that enters in described Windows certified component and described AD territory serviced component, if the two to enter domain information consistent, then illustrate that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
Further, enter domain information described in and include unique SID of computer account and this computer account.
The two of the technical problem to be solved in the present invention, it is in that the system providing a kind of Windows pond desktop automatically to enter territory, in the process according to template establishment pond desktop virtual machine, it is operated by domain server, and territory key operation is carried out when pond desktop system starts, so just meeting Windows enters the condition in territory, verifies that when Netlogon process initiation whether key is consistent with data in domain server, completes automatically to enter the function in territory.
The two of the problem of the present invention, are achieved in that
A kind of Windows pond desktop enters the system in territory automatically, and described system includes:
AD service virtual machine creation module, for creating the virtual machine of a Microsoftserver system, is provided with an AD territory serviced component and a service end in the virtual machine of this Microsoftserver system;
Pond desktop virtual machine creation module, for creating a pond desktop virtual machine according to the virtual machine template entering territory, is provided with a client and a Windows certified component in this pond desktop virtual machine;
Enter domain information creation module, for, after the virtual machine starting Microsoftserver system, creating into domain information under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory;
Enter domain information memory module, for described service end by described enter domain information be written to correspondence certification dish store;
Enter domain information read module, for after starting pond desktop virtual machine, described client read from described certification dish described in enter domain information;
Enter domain information writing module, be written to described Windows certified component for described client by entering domain information described in reading;
Enter domain information authentication module, log in pond desktop virtual machine for user, the domain information that enters in described Windows certified component and described AD territory serviced component is verified, if the two to enter domain information consistent, then illustrate that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
Further, enter domain information described in and include unique SID of computer account and this computer account.
Present invention have the advantage that
(1) problem that batch pond desktop cannot enter territory automatically is solved;
(2) solve original enter after territory virtual machine enters territory, computer account and SID are expired and cause into territory failure problem;
(3) solve original enter territory virtual machine when being inverted to snapshot, enter the problem that territory is failed.
Accompanying drawing explanation
The present invention is further illustrated in conjunction with the embodiments with reference to the accompanying drawings.
Fig. 1 is principles of the invention block diagram.
Fig. 2 is the method execution flow chart that a kind of Windows pond of present invention desktop enters territory automatically.
Detailed description of the invention
For making the present invention become apparent, existing with a preferred embodiment, and coordinate accompanying drawing to be described in detail below.
As depicted in figs. 1 and 2, the method that a kind of Windows pond desktop of the present invention enters territory automatically, described method comprises the steps:
Step 1, create the virtual machine of a Microsoftserver system, the virtual machine of this Microsoftserver system is provided with an AD territory serviced component and a service end;
Step 2, basis have entered the virtual machine template in territory and have created a pond desktop virtual machine, are provided with a client and a Windows certified component in this pond desktop virtual machine;
Step 3, start Microsoftserver system virtual machine, create under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory into domain information, described in enter domain information and include unique SID of computer account and this computer account;
Described computer account and described SID are written to the certification dish of correspondence and store by step 4, described service end, are provided with control file in described certification dish;
Step 5, startup pond desktop virtual machine, described client reads described computer account and described SID from described certification dish;
The described computer account read and described SID are written to described Windows certified component by step 6, described client;
Step 7, user log in pond desktop virtual machine, are verified with the computer account in the serviced component of described AD territory and SID by described Windows certified component, if the computer account of the two and SID are consistent, then illustrate that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
A kind of Windows pond desktop of the present invention enters the system in territory automatically, and described system includes:
AD service virtual machine creation module, for creating the virtual machine of a Microsoftserver system, is provided with an AD territory serviced component and a service end in the virtual machine of this Microsoftserver system;
Pond desktop virtual machine creation module, for creating a pond desktop virtual machine according to the virtual machine template entering territory, is provided with a client and a Windows certified component in this pond desktop virtual machine;
Enter domain information creation module, for after the virtual machine starting Microsoftserver system, create under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory into domain information, described in enter domain information and include unique SID of computer account and this computer account;
Enter domain information memory module, for described service end, described computer account and described SID are written to corresponding certification dish and store, described certification dish is provided with control file;
Entering domain information read module, for after starting pond desktop virtual machine, described client reads described computer account and described SID from described certification dish;
Enter domain information writing module, for described client, the described computer account read and described SID are written to described Windows certified component;
Enter domain information authentication module, pond desktop virtual machine is logged in for user, described Windows certified component is verified with the computer account in the serviced component of described AD territory and SID, if the computer account of the two and SID are all consistent, then illustrates that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
AD territory serviced component: be the domain server of Microsoft's offer, for managing the functions such as the strategy of computer, certification, territory service;
Service end (enters territory service end) automatically: run on the assembly in the virtual machine of Microsoftserver system, is responsible for the establishment of computer account and the amendment of the SID to this computer account when automatically entering territory;
Certification dish: be one piece of virtualized storage dish of low capacity, loads when pond desktop virtual machine starts, is used for being stored into domain information, such as the SID of: computer account, computer account;
Windows certified component: this assembly operating is in, in the Windows pond desktop virtual machine automatically entering territory service end management, being responsible for user log-in authentication management, complete into territory proof procedure alternately with AD territory serviced component;
Client (enters territory client) automatically: run on the assembly in the desktop virtual machine of pond, is responsible for reading computer account and SID from certification dish, and is written in computer.
Although the foregoing describing the specific embodiment of the present invention; but those familiar with the art is to be understood that; we are merely exemplary described specific embodiment; rather than for the restriction to the scope of the present invention; those of ordinary skill in the art, in the equivalent modification made according to the spirit of the present invention and change, should be encompassed in the scope of the claimed protection of the present invention.
Claims (4)
1. the method that a Windows pond desktop enters territory automatically, it is characterised in that: described method comprises the steps:
Step 1, create the virtual machine of a Microsoftserver system, the virtual machine of this Microsoftserver system is provided with an AD territory serviced component and a service end;
Step 2, basis have entered the virtual machine template in territory and have created a pond desktop virtual machine, are provided with a client and a Windows certified component in this pond desktop virtual machine;
Step 3, start Microsoftserver system virtual machine, create into domain information under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory;
Step 4, described service end by described enter domain information be written to correspondence certification dish store;
Step 5, start pond desktop virtual machine, described client read from described certification dish described in enter domain information;
Step 6, described client are written to described Windows certified component by entering domain information described in reading;
Step 7, user log in pond desktop virtual machine, are verified by the domain information that enters in described Windows certified component and described AD territory serviced component, if the two to enter domain information consistent, then illustrate that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
2. the method that a kind of Windows pond according to claim 1 desktop enters territory automatically, it is characterised in that: described in enter domain information and include unique SID of computer account and this computer account.
3. a Windows pond desktop enters the system in territory automatically, it is characterised in that: described system includes:
AD service virtual machine creation module, for creating the virtual machine of a Microsoftserver system, is provided with an AD territory serviced component and a service end in the virtual machine of this Microsoftserver system;
Pond desktop virtual machine creation module, for creating a pond desktop virtual machine according to the virtual machine template entering territory, is provided with a client and a Windows certified component in this pond desktop virtual machine;
Enter domain information creation module, for, after the virtual machine starting Microsoftserver system, creating into domain information under the computer catalogue of described service end specified domain controller in the serviced component of described AD territory;
Enter domain information memory module, for described service end by described enter domain information be written to correspondence certification dish store;
Enter domain information read module, for after starting pond desktop virtual machine, described client read from described certification dish described in enter domain information;
Enter domain information writing module, be written to described Windows certified component for described client by entering domain information described in reading;
Enter domain information authentication module, log in pond desktop virtual machine for user, the domain information that enters in described Windows certified component and described AD territory serviced component is verified, if the two to enter domain information consistent, then illustrate that pond desktop virtual machine enters territory success automatically; Otherwise, illustrate that pond desktop virtual machine enters territory failure automatically.
4. the method that a kind of Windows pond according to claim 1 desktop enters territory automatically, it is characterised in that: described in enter domain information and include unique SID of computer account and this computer account.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610069104.7A CN105653342B (en) | 2016-02-01 | 2016-02-01 | A kind of ponds Windows desktop enters the method and system in domain automatically |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610069104.7A CN105653342B (en) | 2016-02-01 | 2016-02-01 | A kind of ponds Windows desktop enters the method and system in domain automatically |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105653342A true CN105653342A (en) | 2016-06-08 |
| CN105653342B CN105653342B (en) | 2018-09-28 |
Family
ID=56489146
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610069104.7A Active CN105653342B (en) | 2016-02-01 | 2016-02-01 | A kind of ponds Windows desktop enters the method and system in domain automatically |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105653342B (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112068846A (en) * | 2020-08-07 | 2020-12-11 | 福建升腾资讯有限公司 | Application distribution method, device and medium based on dual systems |
| CN112835680A (en) * | 2021-01-30 | 2021-05-25 | 浪潮云信息技术股份公司 | Method for automatically setting password of Windows operating system virtual machine |
| CN114153533A (en) * | 2021-10-20 | 2022-03-08 | 福建升腾资讯有限公司 | Method, device, equipment and medium for automatically adding pool desktop into Windows AD domain |
| CN114363334A (en) * | 2021-12-30 | 2022-04-15 | 阿里巴巴(中国)有限公司 | Network configuration method, device and equipment for cloud system and cloud desktop virtual machine |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101971162A (en) * | 2008-02-26 | 2011-02-09 | 威睿公司 | Extending server-based desktop virtual machine architecture to client machines |
| US8806481B2 (en) * | 2010-08-31 | 2014-08-12 | Hewlett-Packard Development Company, L.P. | Providing temporary exclusive hardware access to virtual machine while performing user authentication |
| CN104484209A (en) * | 2014-12-23 | 2015-04-01 | 国云科技股份有限公司 | A method for automatic domain entry of Windows virtual machine images |
| CN104601367A (en) * | 2014-12-05 | 2015-05-06 | 国云科技股份有限公司 | AD domain based virtual desktop management method |
-
2016
- 2016-02-01 CN CN201610069104.7A patent/CN105653342B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101971162A (en) * | 2008-02-26 | 2011-02-09 | 威睿公司 | Extending server-based desktop virtual machine architecture to client machines |
| US8806481B2 (en) * | 2010-08-31 | 2014-08-12 | Hewlett-Packard Development Company, L.P. | Providing temporary exclusive hardware access to virtual machine while performing user authentication |
| CN104601367A (en) * | 2014-12-05 | 2015-05-06 | 国云科技股份有限公司 | AD domain based virtual desktop management method |
| CN104484209A (en) * | 2014-12-23 | 2015-04-01 | 国云科技股份有限公司 | A method for automatic domain entry of Windows virtual machine images |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112068846A (en) * | 2020-08-07 | 2020-12-11 | 福建升腾资讯有限公司 | Application distribution method, device and medium based on dual systems |
| CN112068846B (en) * | 2020-08-07 | 2023-11-10 | 福建升腾资讯有限公司 | Application distribution method, device and medium based on dual systems |
| CN112835680A (en) * | 2021-01-30 | 2021-05-25 | 浪潮云信息技术股份公司 | Method for automatically setting password of Windows operating system virtual machine |
| CN114153533A (en) * | 2021-10-20 | 2022-03-08 | 福建升腾资讯有限公司 | Method, device, equipment and medium for automatically adding pool desktop into Windows AD domain |
| CN114363334A (en) * | 2021-12-30 | 2022-04-15 | 阿里巴巴(中国)有限公司 | Network configuration method, device and equipment for cloud system and cloud desktop virtual machine |
| CN114363334B (en) * | 2021-12-30 | 2024-04-02 | 阿里巴巴(中国)有限公司 | Cloud system, network configuration method, device and equipment of cloud desktop virtual machine |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105653342B (en) | 2018-09-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8924703B2 (en) | Secure virtualization environment bootable from an external media device | |
| CN101655798B (en) | Method for deployment and operation of application in computer and virtual machine environments | |
| US8924954B2 (en) | Application software installation method and application software installation apparatus | |
| US8874953B2 (en) | System and method of cloud testing and remote monitoring for integrated circuit components in system validation | |
| EP1915680B1 (en) | Archiving data in a virtual application environment | |
| CN101436233B (en) | Hard disk multi-user partition switch control method, system and computer terminal | |
| US20080172555A1 (en) | Bootable thin client personal initialization device | |
| CN113544675B (en) | Secure Execution Client Owner Environment Control Character | |
| US20090249051A1 (en) | Systems and methods for managing user configuration settings | |
| CN103699372A (en) | Booting a computer system from central storage | |
| US10929241B2 (en) | System and method to provide file level restore | |
| CN105653342A (en) | Method and system for achieving automatic domain entering of Windows pool desktop | |
| CN113826072A (en) | Code Updates in System Administration Mode | |
| US10127050B2 (en) | Efficient booting system | |
| US10701108B2 (en) | System and method for determining a policy in virtual desktop infrastructure (VDI) | |
| CN112486508B (en) | Deployment method of operating system, server and computer storage medium | |
| WO2017020460A1 (en) | Method and apparatus for integrating plugin | |
| CN106557354B (en) | Method for setting attribute parameters of private image and computer equipment | |
| Lowe | Mastering VMware vSphere 4 | |
| US11550880B2 (en) | Method for controlling execution of an application | |
| Shah | Windows Server 2012 Hyper-V: Deploying the Hyper-V Enterprise Server Virtualization Platform | |
| US10740021B1 (en) | Systems and methods for recovery of computing environments via a replication solution | |
| CN108509252A (en) | Virtual machine starter, method and host | |
| CN115774742A (en) | Data storage newly-increased method, device, equipment, medium and product of private cloud | |
| GB2605223A (en) | Virtualizing specific values in a guest configuration based on the underlying host symbol repository |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |