Can I setup a custom taskpad to access from a laptop that is not on the domain, but is on the network?

Posted on 2009-05-14
Medium Priority
Last Modified: 2012-05-07
Here is the setup I have.

Laptop with Windows XP Pro, that is not added to the domain, so the user is logging into the laptop with his local account on the laptop.  The laptop is on the network.

Is it possible to setup a Custom TaskPad to allow this user / laptop to access certain OU's in the AD to say reset account passwords?

If so, could you give me details?


Question by:rsnellman
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2

Author Comment

ID: 24387084
Or will I have to add the laptop to the domain in order for a custom taskpad to work for resetting account passwords in the ADUC?
LVL 85

Accepted Solution

oBdA earned 2000 total points
ID: 24387417
The ADUC console requires the user to be logged on with a domain account to do anything useful with it.
A solution that wouldn't require the notebook to be joined to the domain is to install a virtual machine on the notebook, join the virtual machine to the domain, and do the maintenance on the VM (apart from the obvious method of connecting to a domain machine through RDP).
LVL 18

Expert Comment

ID: 24387817
If you can join the computer to the domain it would make things easier.
If for what ever reason you can't then you still can create customized mmc console like the taskpad and use the "run as" and specify a domain user account and password to run it. To be able to run the taskpad, you need to also install the adminpak on the computer assuming your taskpad console is basically running the ADUC gui.
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

LVL 85

Expert Comment

ID: 24387852
You can't use "runas" with a domain user on a machine that isn't a member of the domain; how would the machine be able to authenticate the account?
LVL 18

Expert Comment

ID: 24388092
oBdA is correct, the computer must be in the domain to authenticate the account.
RunAs works when the computer is a member of the domain, it work even when you logged on to a domain member computer with a non-domain account. But the computer must be a member of the domain. Thanks for the correction, my bad.

Author Comment

ID: 24388568
So, I must add the laptop to the domain and make it a passthrough on my wireless network so it can log into that domain account when it boots up.

Hmmmm...just was hoping not to add it but not a big deal.

Thanks to all.


Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Suggested Courses

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question