Redirecting the users and computers containers

By default Active Directory places user accounts, computer accounts, and groups in CN=objectclass containers.

Redirecting the default container for user, computer, and security groups to an organizational unit permits Group policies to be applied.

Microsoft considers it "best practice" to place security principals into an organizational unit hierarchy that mirrors your organizational structure, geographic layout, or administration model.

Redirect Users

redirusr <DN path to alternate OU>

redirusr ou=myusers,DC=contoso,dc=com

Redirect Computers

redircmp <DN path to alternate OU>

redircmp ou=mycomputers,DC=contoso,dc=com

Redirecting the users and computers containers in Active Directory domains

Considerations

Windows Server 2003 domain functional level or higher required.

The default User and Computer containers are protected against accidental deletion remember to ensure that you do the same with your new OUs.