1

Change machine name of a client from DC?

view story
linux-howto

http://serverfault.com – I'm granting least privileges needed for an account, that he could rename the computer machine name for each client. (All Windows 7 PCs) These clients have already joined the domain, now what kind of privileges should I grant to that account? Not the domain admins group, of course. Also I tried to grant full control of Computers objects to that account, but when I navigated to the Computer Properties tab, on Advanced System Settings tab, I clicked the button and it still asks for password of a Domain Admin account. What's the right way to do so? (HowTos)

taskli's picture
Submitted by taskli on 12/07/2012

Stories similar to Change machine name of a client from DC?

What I would like to do is grant permission for a domain account to log on to any server/workstation and be a local administrator with having to add this account to domain admin group?

This account only needs to be able to read folder sizes on all folders on a workstation/server.

Is there a GPO for that?

I'd like to create an account that is not a domain admin, so user cannot log into ADUaC, GP editor, etc but has privileges to access the Event Viewer, install printer drivers and applications on a client PC.

This will be for a student worker to help ease our workload and do basic troubleshooting. How can I create this type of ac

I am trying to add some RHEL6 boxes to an S2008R2 domain. Part of the process is to create a computer account in AD, then add an SPN to it.

Pretty much all guides say that you need Admin privileges on AD, but that is not available to me. I want to give the Linux Admins the minimum rights possible on AD.

I have an Domain account with admin priviliges and I need to use that account to run the Hyper-v Machine Management Service. my goal is to use that domain account to create VMs using ISO files that are in a different server within the same domain.

Duplicating an account 50 weeks 3 days ago

I am wondering if there is a way to duplicate an account within the SAI and have a domain that pointed to one account point to the other account.

I'm simply double checking my logic, but I'm thinking under the account functions when a new account is created simply copy all the data and databases into the new account and change the domain under the account settings. Is that correct?

I have made a service that has the capability to reset, changes passwords, unlock a locked out account, and read AD profile values (e.g. sn, firstname etc) of some domain user after the user verifies himself through phone. On the target domain server, there exists a privileged account who is capable of doing these tasks.

Good evening, I get the following error when prompted for my user name and password when finally joining the domain.

"The specified computer account could not be found. Contact an administrator to verify the account is in the domain. If the account has been deleted, unjoin, reboot and rejoin the domain."

If my machine has Windows 7 and connect to domain, what happens when domain controller is unavailable ?

How do I exactly log in when domain controller is unavailable ?

I mean normally it should use Kerberos, and it should fall back to NTLM.

Does that mean domain account and password hash are stored in SAM ?

What is the difference between the root account i.e.