Sign in with
Sign up | Sign in
Your question

User account adding pc's to domain

Last response: in Windows 2000/NT
Share
Anonymous
April 27, 2005 3:27:18 PM

Archived from groups: microsoft.public.win2000.setup (More info?)

Good morning everyone
I have a strange one for you and after hours of looking at this issue I
cannot for the life of me find out why this can happen.
We thought up until today that we had a very secure network controlled by a
domain administrator until we discovered that a user (via his vpn had added
his home pc to the domain. So I replicated this in the office over the
network using the users ID and password and lo and behold it added my test
laptop to the domain. I tried this with random usernames and as I expected
it didnt let them add my test machine on to the domain.

Anyway I have checked the rogue user's groups and he is only in domain users
which I have also checked. Please could someone let me know if this is a
known issue or am I missing something that is glaring me in the face.
My best wishes to you all and thanks in advance for any help you may be able
to give me.

Nick
Anonymous
April 29, 2005 12:34:14 PM

Archived from groups: microsoft.public.win2000.setup (More info?)

http://support.microsoft.com/?kbid=139365
Capabilities of the "Add Workstations To Domain" Right

http://support.microsoft.com/kb/q251335/
Domain Users Cannot Join Workstation or Server to a Domain

Regular Authenticated User can join a W2k domain under a computer account
(10 accounts maximum by default) only if the computer account does not exist
or if this AU adds the computer account. If an Administrator or Account
Operator adds the computer account, the computer account must be removed by
an Administrator or Account Operator before you can join the domain under
that computer account.
!