Re: unable to add machine accounts to domain
- From: stosti <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 20 Feb 2006 16:24:26 -0800
Actually I would like if the microsoft feature that allows a user to add 10
machines to the domain worked. This will hve to do... We add machines often
because we are a software company.
All of our computers are in the "computer" container...
"Jorge de Almeida Pinto [MVP]" wrote:
just checking....
are you really sure you want EVERY user in the organization to add computers
to the domain?
remember when you join computers to the domain the accounts are placed into
the default computer container.
If you delegate the permissions to join computers to the domain in some OU
the computer account should pre-created in the OU OR the user should use
NETDOM and target the OU where the computers should reside.
Besides that those users must have local administrator permissions on those
computers and because the computers are not joined they must know the
password for the local administrator or use another account with the same
privileges
IMHO, you really do not want that.
How many OUs do you have where computer accounts should reside for clients?
WHY do you want all users to be able to do that instead of delegating it to
service desk personel?
--
Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)
# Jorge de Almeida Pinto # MVP Windows Server - Directory Services
BLOG --> http://blogs.dirteam.com/blogs/jorge/default.aspx
-----------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always test before implementing!
-----------------------------------------------------------------------------
-----------------------------------------------------------------------------
"stosti" <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:23E99E96-0BA9-4D11-A961-2CC183B2F97F@xxxxxxxxxxxxxxxx
I would like to have all authenticated users be able to add workstations to
the domain. Currently onlt administrators and account operators can
sucessfully ad a machine.
New users cannot add 10 machine anymore as well...
Thank You!!!
"Jorge de Almeida Pinto [MVP]" wrote:
OK, please explain what you would like to achieve...don't forget any
details, just say what you really want
Having that I will try to help you
--
Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)
# Jorge de Almeida Pinto # MVP Windows Server - Directory Services
BLOG --> http://blogs.dirteam.com/blogs/jorge/default.aspx
-----------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no
rights!
* Always test before implementing!
-----------------------------------------------------------------------------
-----------------------------------------------------------------------------
"stosti" <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:25AA187E-86B8-4870-A272-FE88F7D14FDF@xxxxxxxxxxxxxxxx
The artical is a bit confusing... So you cannot do it by using the
deligation of control wizard? If yes which one in the list is the
correct
one to check off? If not what tool or program do you use to make the
changes
they list?
6 to 9 months ago the built in right to add 10 work stations to the
domain
stoped working as well. I actually would prefer to get this working
again.
Can the number (10) be changed? If yes where is that modified?
Thanks!!!
"Jorge de Almeida Pinto [MVP]" wrote:
see:
http://blogs.dirteam.com/blogs/jorge/archive/2006/01/05/369.aspx
--
Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)
# Jorge de Almeida Pinto # MVP Windows Server - Directory Services
BLOG --> http://blogs.dirteam.com/blogs/jorge/default.aspx
-----------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no
rights!
* Always test before implementing!
-----------------------------------------------------------------------------
-----------------------------------------------------------------------------
"stosti" <stosti@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:E3A042B0-2A87-47AA-AFBF-4853B413DD21@xxxxxxxxxxxxxxxx
I added the authenticated users group to the domain group policies
under
add
workstations to the domain. Why doesn't it work? If i add a user
to
the
account operators group that user can add users to the domain.
I tried adding the user by account name in the group policy's. That
did
not
work either...
Thanks,
Scott
- Follow-Ups:
- Re: unable to add machine accounts to domain
- From: Jorge de Almeida Pinto [MVP]
- Re: unable to add machine accounts to domain
- References:
- Re: unable to add machine accounts to domain
- From: Jorge de Almeida Pinto [MVP]
- Re: unable to add machine accounts to domain
- From: Jorge de Almeida Pinto [MVP]
- Re: unable to add machine accounts to domain
- From: stosti
- Re: unable to add machine accounts to domain
- From: Jorge de Almeida Pinto [MVP]
- Re: unable to add machine accounts to domain
- Prev by Date: Re: ADAM Bind to alias pointing local server fails
- Next by Date: Re: User Profiles
- Previous by thread: Re: unable to add machine accounts to domain
- Next by thread: Re: unable to add machine accounts to domain
- Index(es):
Relevant Pages
|
Loading
