Domain Trust broken, but GPO still exists effecting local admin account
Posted on 2014-10-16
I deleted the computer account from AD but now want to add machine back to domain. Problem is when I deleted the account it left in place a group policy that now appears to have set the local administrator account on the machine to be a guest only. I can log in as the local admin account, but it has no rights to open the machines settings which allow me to attach to a domain... say it's restricted by group policy.
Need to either be able to disable the domain group policies that are still in place, or, need to be able to create another local account that actually has admin rights on the local machine.
Domain is running on server 2012R2 and the client machine is Win7.