[Webinar] Streamline your web hosting managementRegister Today


Reset Computer in Active Directory - cannot login to domain or local computer

Posted on 2008-01-31
Medium Priority
Last Modified: 2012-05-05
Scenario - trying to change a locked-out employee's password  in active directory; rather than use "reset password" from the "associates' option, we used "Computers" - "reset account".

Now the user cannot even login into the domain or local computer, even with admin accounts. We have reset the password - doesn't work.

When trying to login to domain - it says "...either domain or domain controller unavailable". Logging into local, does not work either.

The active directory tool is on a Win2k3 server; employee computer is WinXP.

We ping the computer name (WOODY) and get a reply. We have tried things like removing and adding back the computer from active directory, remote desktop conn, opening folders (\\WOODY\filename) from admin computers, etc all to no avail.

Kindly help. Is there a tool or method to get this computer back into the domain so we can login or reset the local password, without re-installing winXP so we do not lose data files.

Question by:godwineffiong

Expert Comment

ID: 20793965
His files aren't backed up to the server?  Are his files protected? Can you hit F8 when the puter is booting and try to login as Administrator locally, and backup his files? I would try to save the data before proceeding
LVL 13

Accepted Solution

murgroup earned 2000 total points
ID: 20793971
I've used this with great success. Reset the admin password to nothing then you can remove the machine from your domain and rejoin it.

LVL 11

Expert Comment

ID: 20794109
That is because "Rest Computer" breaks the trust between the computer and the domain.  Resets it.  So you can disjoin and rejoin a system.

You will need a utility to change the local admin password on the machine.

When you hack the lack admin password,  you'll have to make sure it follows the password policy of your domain.  

Something like       P@ssw0rd

Author Comment

ID: 20806130

THANKS!!! It worked perfectly.

Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Let's recap what we learned from yesterday's Skyport Systems webinar.
Sometimes it necessary to set special permissions on user objects.  For instance when using a Blackberry server, the SendAs permission needs to be set. I see many admins struggle with the setting that permission only to see it disappear within a few…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

590 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question