Okay, here's the full cloud scenario you all have been waiting for: Windows Server 2008 R2 SP1 Infrastructure is in a datacenter somewere and Direct Access Windows 7 SP1 should connect via Direct Access. So far so good, but how could a new client join the domain without physical access to the wire? Actually we're using a comlex, manual handshake connect with traditional L2TP join the domain download and apply policy (GPUPDATE) Restart Has anyone a idea how to improve that - a read something about a Windows Server 2008 R2 Feature called 'Offline Domain Join'? Regards, Dennis

Hi, Although you can use Offline domain join to let a workstation to join the domain, but the policy have not apply to the client. So let the workstation to use the DirectAccess is very complex and inconvenient. The following link for your reference. http://social.technet.microsoft.com/Forums/en/windowsserver2008r2networking/thread/af6b5602-bab1-4765-b161-5283f40457f1 Regards, Juke TechNet Subscriber support in form. If you have any feedback on our support, please contact tngfb@microsoft.comPlease remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Hallo Juke, thanky, your link is very helpfull for us - we'll work thru the steps and hopfuly it will work. Regards, Dennis

Hi Dennis, Were you able to get this to work with the provided info? We deploying laptops like this successfully almost everyday and I was wondering what your experiences are. Best regards!

Hello Mister Iks, unfortunately the deployment team hasn't evaluated, actuelly there in scoping the next rel. - I hope it will be included, because it would speed up the process and save us money. Regards, Dennis

Mister X we are following your solution on http://social.technet.microsoft.com/Forums/en/windowsserver2008r2networking/thread/af6b5602-bab1-4765-b161-5283f40457f1 We have some problems, thank you for helping us. 01. :At a DC, delete the computer account from the domain in case it already exists. OK 02. :Create a Djoin request file at the laptop (connected to the domain) OK 03. OK 04. OK 05. :At the DC (Workstation ?) process the djoin request file Djoin /requestodj /loadfile [Computer Name].txt /windowspath %windir% /localos 06. OK 07. OK 08. OK 09. OK 10. KO: error 0x80094800 invalid CustomTemplateName Any idea ? Regards Can

Hi Mister X 10. certreq -submit -config "10.11.12.13\Name of CA" -attrib "CertificateTemplate:Webser" [Computer Name].req [Computer Name].cer That works but noway to logon on the domain: "There are currently no logon server..."