[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

After renaming Local Admin Account, cannot run NETDOM renamecomputer anymore

Posted on 2011-09-27
2
Medium Priority
?
883 Views
Last Modified: 2012-08-13
Hi Experts,

I can successfully run the following command to rename a Windows XP that's domain's member:

NETDOM renamecomputer pc01 /newname:dekstop01 /userD:domain\administrator /passwordD:1234 /userO:administrator /passwordO:1234

But if I use GPO to rename admin account to localadmin and run again the command above this time changing /userO:administrator to /userO:localadmin, the command does not complete and returns the following error:

"Logon failure: the user has not been granted the requested logon type at this computer"

I think there might be some local policies at the windows xp that are related to administrator account nominally and, then, when renaming it, it screws things up. Does it make any sense?

It it does, do you guys know how to correct the system policies? All domain's computers have local admin renamed, so the answer "rename local admin account back to administrator" is not an acceptable answer due to company's security policies.
0
Comment
Question by:garconer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 10

Accepted Solution

by:
abhijitwaikar earned 2000 total points
ID: 36714140
Try below on XP machine which has localadmin account before renaming :
Error: Logon failure: the user has not been granted the requested logon type at this computer

Download the following and install it Windows Server 2003 Resource Kit Tools
http://go.microsoft.com/fwlink/?LinkId=4544 

after installation is complete, click on: Start, All Programs, Windows Resource Kit Tools, Command Shell then enter the following commands. (Attention: they are case sensitive.)

net user guest /active:yes
ntrights +r SeNetworkLogonRight -u Guest
ntrights -r SeDenyNetworkLogonRight -u Guest

The first command enables network access for Guest, the two subsequent ones change two different policies to allow network access for Guest.

Regards,
Abhijit Waikar.
0
 

Author Closing Comment

by:garconer
ID: 36714160
That's it! Thanks for your help
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
It’s time for spooky stories and consuming way too much sugar, including the many treats we’ve whipped for you in the world of tech. Check it out!
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question