<div>
Depening on the process of your user use to join computer to a domain. If you don't create the computer account first in the appropriate OU, then the computer account will be created in the &quot;Computers&quot; container which by default user do not have right to create any object there.
</div>


Depening on the process of your user use to join computer to a domain. If you don't create the computer account first in the appropriate OU, then the computer account will be created in the "Computers" container which by default user do not have right to create any object there.

<div>
Thanks much, worked perfectly.
</div>


<div>
<div class="content wysiwyg-content">
I am not sure exactly what I am doing wrong here, however, I have ran the AD Delegation Wizard and added a Global Security group at the root of our Domain so that some of my users can change passwords and join computers to the domain. &nbsp;I have not changed any settings in our Default Group Policy and when the users try and join the machines to the Domain they are getting &quot;Access Is Denied&quot; &nbsp;<br />
<br />
If anyone can point me in the right direction here it would be greatly appreciated.
</div>
</div>


I am not sure exactly what I am doing wrong here, however, I have ran the AD Delegation Wizard and added a Global Security group at the root of our Domain so that some of my users can change passwords and join computers to the domain.  I have not changed any settings in our Default Group Policy and when the users try and join the machines to the Domain they are getting "Access Is Denied"  

If anyone can point me in the right direction here it would be greatly appreciated.

How do I delegate domain users to change passwords and join computers to domain?

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.