[Full Guide] How to Join a Domain in Windows 10

[Full Guide] How to Join a Domain in Windows 10

Cris's Avatar
/ Cris Mamon

Joining a domain on Windows 10 is a common task for many organizations that rely on Microsoft’s Active Directory infrastructure to manage their networks. A domain is a centralized location where a network administrator manages and controls users, computers, and other resources. By joining a Windows 10 device to a domain, users can access resources only available within the domain and subject to domain-level policies and permissions.

In this article, we will guide you through joining a domain on Windows 10, including the prerequisites, the different methods available, and some troubleshooting tips to help you overcome common issues.

Why Should You Join a Domain on Windows 10

  • Centralized Management: Joining a domain on Windows 10 allows network administrators to centrally manage user accounts, computer configurations, and group policies, making it easier to maintain security and standardization across the network.
  • Access to Domain Resources: Once a Windows 10 device is joined to a domain, users can access resources such as printers, files, and applications only available within the domain, providing a more secure and controlled environment for sharing information.
  • Simplified Authentication: By joining a domain, users can use a single set of credentials to access all the resources on the network, eliminating the need for multiple usernames and passwords and reducing the risk of security breaches due to weak passwords.

Joining Pre-requisites

To join a domain on Windows 10, the following prerequisites must be met:

  • Your computer must run a supported version of Windows 10, such as Windows 10 Pro or Enterprise.
  • Having administrative privileges on the computer is required.
  • You must have a valid user account and password for the domain you want to join.
  • Your computer must have a working network connection to the domain.
  • Your computer needs to be able to access the domain controller.

You may need to configure network settings, such as DNS, to enable your computer to communicate with the domain controller.

Connect a PC on Windows 10 to a Domain

  1. Open the Settings app on your Windows 10 PC by clicking the Start menu and selecting Settings (gear icon).
  2. Click on System from the available options.
check system specs
  1. Click on About from the left-hand menu.
  2. Scroll down to the bottom of the page and click on the button labeled Join a domain.

In the next window, enter the name of your domain in the Domain field and click on the Next button.

join a domain screen
  1. If prompted, enter the credentials of a domain user account with administrative rights to proceed with the domain join process.
enter domain credentials
  1. Wait for the system to verify the credentials and authenticate the computer on the domain.
domain information authentication screen
  1. Once the authentication is complete, click on the Next button to proceed.
  2. Review the information on the next screen and click on the Close button.
review domain information
  1. Restart your computer to finalize the domain join process.
restart computer
  1. On the sign-in screen, enter your domain credentials in the format DOMAIN\Username and your domain password to log in to your account.
  2. Once logged in, you may notice some changes to the available options in the Settings app, as they are now centrally managed by the domain controller.

Use System Properties

  1. Press the Windows key + R to open the Run command box. To open System Properties, enter “sysdm.cpl” and hit the Enter key.
sysdm cpl

2. After selecting the Computer Name tab, click “Change…”.

click change to rename computer

3. Choose the Domain option, and type the domain name of the Active Directory (AD) server you want to join. Click OK.

select active domain

4. Enter the credentials of a domain user, and click OK.

enter domain info

5. Restart your computer and sign in to Windows 10 using your domain account.

Use Settings App

  1. Press the Windows key + I to open the Settings app. Navigate to Accounts -> Access work or school, and click Connect on the right side.
access work or school

2. Within the pop-up window, choose “Join this device to a local Active Directory domain”.

set up a work or school account

3. Enter the Active Directory domain’s name and then click Next.

enter domain name

4. Input your domain account username and password, then click OK.

5. Choose your account type to continue. Restart your computer to finalize connecting Windows 10 to the Active Directory domain.

Add Windows 10 to Domain Using PowerShell

  1. Open PowerShell with administrator rights and type the following command: “Add-Computer -DomainName ‘Domain Name’ -Credential ‘Domain Username'”.
add domain via powershell

2. Press Enter, then enter your domain user password when prompted.

enter username and password for powershell credential

3. A warning will appear in yellow, stating that you must reboot to finish the task.

Use the GUI

  1. Open the System Properties control panel applet by running the command sysdm.cpl.
sysdm cpl

2. Click the Change button on the System Properties screen to open the Computer Name/Domain Changes dialog box.

click change to rename computer

3. In the dialog box, select the Domain radio option and input the domain name to add the computer to the Domain box. Click OK to proceed.

computer name an domain changes screen

4. The computer will try to establish communication with a domain controller and join the domain. If the computer cannot contact a domain controller, make sure its DNS server points to a domain controller so it can find the DNS SRV record to locate a domain controller.

homelab local

5. If the computer can contact a domain controller, it will prompt you for a username and password. Please provide a user account with the necessary permissions to join this computer to the domain, then click the OK button.

enter domain name changes

6. Once you have successfully added the computer to the domain, a message welcoming you to the domain will appear. Click OK.

new domain welcome message

7. Click OK again to confirm the need to restart the computer.

restart message after changing domains

8. You will see a warning (Changes will take effect after you restart this computer.) on the System Properties dialog box. Click Close.

9. Finally, Windows will prompt you to restart your computer. To restart the computer immediately, please click on the Restart Now button.

restart now to apply changes

Join a domain in Windows 10 using CMD (Command Prompt)

  1. Open cmd.exe as an administrator.
run as admin cmd

2. Use netdom join command along with the required parameters. Replace the computer name value with the variable %computername% to represent the local computer. Example: netdom.exe join %computername% /domain:DomainName /UserD:DomainName\UserName /PasswordD:Password

3. Restart the computer to complete the joining process after running the command.

restart computer

Adding Computers Remotely to a Domain

This guide covered adding a computer to a domain while physically at the machine. However, what should you do if you cannot be present or need to add multiple computers? In such cases, PowerShell can be a valuable tool.

You can use the WMI method in PowerShell to remotely add computers to a domain.

  1. Utilize the Add-Computer PowerShell cmdlet and specify the ComputerName parameter.
  2. Before running the Add-Computer cmdlet remotely, ensure that PSRemoting is enabled on all target computers. Follow these steps to add a remote computer to a domain:
  3. Open PowerShell as an administrator on your local workstation (not the computer to be added to the domain).
  4. Use the following command to add the remote computer “win10demo” to the “homelab.local” domain:
  5. To incorporate a new computer into the homelab.local domain and restart it, use the following command: Add-Computer -ComputerName win10demo -LocalCredential win10demo\user01 -DomainName homelab.local -Credential homelab\labadmin -Restart
  6. This command utilizes the local user account “user01” on the “win10demo” computer for authentication and the “labadmin” domain account to authenticate and add the computer account to the domain. The remote computer will restart automatically after completion.
  7. The Add-Computer cmdlet will prompt for passwords for both the “user01” and “labadmin” accounts.

The Add-Computer cmdlet will not restart the remote computer if a user is logged in by default. To override this behavior, constantly restart the remote computer using the Force switch parameter.

Conclusion

Joining a Windows computer to a domain is an important network management and security process. There are various methods to accomplish this task, each with advantages and disadvantages. Following the correct steps and providing the credentials to ensure a successful domain join is essential.

Cris Mamon
Meet the author
Cris Mamon

Chris has been writing professionally since the early 2000s. He has written articles for newspapers and magazines, books on Windows software development, and technical documentation on Microsoft products. He also has a passion for helping people get started with technology.

You may also like