Here is what is going on. I recently took over an account from another IT company. I changed the AD administrator password. It was working just fine but yesterday I had to get on the Server and the password would not work. I tried using a Linux password hack cd but could not get it to work. I went ahead and tried logging in using another users account and it logged in. I found out that almost every user had administrative rights. I went ahead and changed the administrator password again and removed administrative right for all the users. So today I needed to install two new desktops and when I went to join the domain, the password that I just changed it to yesterday no longer works. Unfortunately in trying to make things more secure, I no longer could use any of the other logins now either. I realized that the Linux CD was only changing the local administrator password so I bought Asunsoft's Windows password reset advanced software that said it could change the password for the AD administrator account. It also said it could add new users with administrator rights. The software did not work. I also bought and downloaded another program that said it could do it but no go with it either. Since I could change the local administrator password, I tried using the method from Petri's website to boot into Directory Service Restore Mode that would allow me to login with the local administrator account but even though the Linux CD said it had successfully change the password, I could not login. It seems that there is something going on with this Server that is preventing me from accessing the Administrator account. My guess is that is the reason why the previous IT company had most of the users accounts with administrative privileges. They couldn't fix the issue, so they just made sure they could still access the system. I am hoping that someone has a good suggestion as to what I can do to get the Administrator account password changed so that I can login. Or if not the administrator then how can I either add a new user to AD with administrative rights or add administrative rights to an existing user account without being in Windows.