rritter Posted August 17, 2005 Share Posted August 17, 2005 Any help would be greatly appreciated. This is a University envirinment. We are running an AD 2000 environment and adding the machines with a Domain User account that is a member of the local box's administrators group. When we add a machine to the domain the first time it works great, but if the machine is reworked and added again (using the same computer name), we get an "access denied" error. If we use a domain admin account we have no problems (of course), but our networking department recently found out we were using an admin account and took it away from us. Is there any type of account that can re-add machines without being a domain admin? Or any way to fix active directory to clear the old record out when the machine attempts to join? Thank you for your time and brainpower.-Richie Link to comment Share on other sites More sharing options...
jondercik Posted August 17, 2005 Share Posted August 17, 2005 Simple answer is, you must be a domain admin to readd the machine to the domain. Link to comment Share on other sites More sharing options...
chilifrei64 Posted August 17, 2005 Share Posted August 17, 2005 unfortunately not everyone on the domain can be domain admins. You didnt specify what group you have with permissions to add computer accounts but basically they need more access. right click on the OU that the computers are in and use the delegate control and give permissions to the user group that you want to give permissions to... they will essentially need full control on that OU Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now