[BBLISA] Join AD without Domain Admin password
Jon Young
jon at drboom.com
Mon Oct 6 22:11:42 EDT 2008
> Is there any way to join a Windows computer onto AD, without
> knowing the password of a Domain Administrator?
Yes, a domain account could have been granted the right to join a machine to
the domain. Granting this right is a common practice to allow for scripting
joining a domain or giving desktop techs the ability to join machines to the
domain but not domain admin rights. Check your ADS to determine if any
accounts or groups beyond the admin groups have this right.
Hope this helps,
Jon
More information about the bblisa
mailing list