User account adding pc's to domain

Archived from groups: microsoft.public.win2000.setup (More info?)

Good morning everyone
I have a strange one for you and after hours of looking at this issue I
cannot for the life of me find out why this can happen.
We thought up until today that we had a very secure network controlled by a
domain administrator until we discovered that a user (via his vpn had added
his home pc to the domain. So I replicated this in the office over the
network using the users ID and password and lo and behold it added my test
laptop to the domain. I tried this with random usernames and as I expected
it didnt let them add my test machine on to the domain.

Anyway I have checked the rogue user's groups and he is only in domain users
which I have also checked. Please could someone let me know if this is a
known issue or am I missing something that is glaring me in the face.
My best wishes to you all and thanks in advance for any help you may be able
to give me.

Nick
1 answer Last reply
More about user account adding domain
  1. Archived from groups: microsoft.public.win2000.setup (More info?)

    http://support.microsoft.com/?kbid=139365
    Capabilities of the "Add Workstations To Domain" Right

    http://support.microsoft.com/kb/q251335/
    Domain Users Cannot Join Workstation or Server to a Domain

    Regular Authenticated User can join a W2k domain under a computer account
    (10 accounts maximum by default) only if the computer account does not exist
    or if this AU adds the computer account. If an Administrator or Account
    Operator adds the computer account, the computer account must be removed by
    an Administrator or Account Operator before you can join the domain under
    that computer account.
Ask a new question

Read More

Domain Microsoft Windows