Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-2768: Can a server be joined with a different hostname than what is set in the DNS?

Authentication Service ,  

12 April,16 at 11:10 AM

Applies to: Centrify DirectControl on all platforms.


A server is present with a DNS name of, what are the consequences of adding it to the domain as  


This is not recommended but it is possible. 

When the user logs in, the client machine knows the target as abc, it will then request the Domain Controller server for a service ticket for abc. The service ticket for abc must exist somewhere in AD for it to respond to this request.

If the machine (abcis joined as (xyz), then only credentials for xyz are created.   

The correct procedure is to join abc as abc, but then add an alias for xyz (use the "-a" option to specify an alias in the adjoin command) so that both services for abc and xyz can be found. 

Both hostname and alias name can be encrypted with the same password that the target machine can then decrypt and verify.