AD user can't join system back to domain

[David]

We have a user with a laptop who brings the laptop home and joins the
system to a home wireless workgoup. When she brings the system back
and connects via ethernet to the domain in which she is a user, only a
domain admin is allowed to join her system back to the domain. This is
not the case with all our student users, who are allowed to join their
systems to the domain without a problem.

Something seems wrong here. Any ideas?

thanks, Dave

 

[Rob Elder, MVP]

Users by default can join up to 10 workstations to a domain. You user
probably exceeded that limit. You could edit the DACL on her OU to give her
the permission to create computer accounts.

My question would be is why even both to disjoin the domain? You user has
to option to log on the local machine. Even a domain logon attempt, will
log the user on with cached credentials. It is not necessary to have the
same workgroup for peer to peer connectivity.

 

[David]

Users by default can join up to 10 workstations to a domain. You user
probably exceeded that limit. You could edit the DACL on her OU to give her
the permission to create computer accounts.

My question would be is why even both to disjoin the domain? You user has
to option to log on the local machine. Even a domain logon attempt, will
log the user on with cached credentials. It is not necessary to have the
same workgroup for peer to peer connectivity.

Thanks Rob, Your question is well taken. Perhaps it is not necessary
for the user to disjoin the domain in order to take advantage of the
wireless setup at home. I think they want to be able to print to a
workstation-shared printer that's on the workgroup. Dumb question- how
do I access the DACL on her OU?

Dave