none
User permssion to rejoin the computer with the same name to domain

    Question

  • My department has part time techs have permissions to join the domian, however they can not join the domain if the computer name  already exists, but full time techs are able to join the domain if the account exists. Is there any way to set the permissions for those part time techs can join the domain with same computer name? I think it will be helpful when they have to reimage PC's with existing name in AD. Thank you.

    Thursday, June 20, 2013 8:35 PM

Answers

  • Hi,

    The group in question needs to be delegated the ability to both create and delete objects in the folder, and they need the following permissions:

    Reset password
    Validated write to DNS host name
    Read and write Account Restrictions
    Validated write to service principal name

    Best regards,

    Rufus

    • Marked as answer by sju2402 Monday, June 24, 2013 1:53 PM
    Thursday, June 20, 2013 10:53 PM

All replies