3.2.4.29.1 Query Computer Account DN for the Local Machine

This task accepts as input the following:

• DomainControllerQueryTarget: the name of the domain controller to query.

Upon success, this task returns the following:

• ComputerAccountDN: A UTF-8 string that contains the DN of the computer account DN for the local machine.

Otherwise, a failure is returned.

This task executes as follows:

1. The server (2) MUST bind to the DRS RPC endpoint ([MS-DRSR] section 2.1) on DomainControllerQueryTarget.

2. The server MUST invoke the IDL_DRSCrackNames method ([MS-DRSR] section 4.1.4) with the following parameter values:

   • rpNames = DomainNameNetBIOS (section 3.2.1.5) "\" ComputerNameNetBIOS (section 3.2.1.5)

   • formatOffered = DS_NT4_ACCOUNT_NAME

   • formatDesired = DS_FQDN_1779_NAME

3. If step 2 succeeds, and only one result was returned, the task sets ComputerAccountDN equal to the DN returned from the IDL_DRSCrackNames call, and returns it. Otherwise, the task returns an error.