View Full Version : domain to workgroup mistake..need some info

06-14-2007, 04:48 PM
here is the situation:

I made a rookie mistake and accident changed my work comp from a domain computer to a workgroup comp. I wa snot able to log in locally since i did not have a username or password. I used boot disk tool to reset the local admin password.

Here is my question: Since i am not the admin of the domain (work it dept is), what will they need to do in order to fix my issue. How is the computer fixed? Do they need physical access to the comp or could they remote in based on the ip address the dhcp server assigns when i log in to the local via admin account? Is my account profile still sitting some where and can be retireved when the domain is switch back?

Please educate me as i am not the best with network administration (obviously)

06-14-2007, 09:00 PM
It's kind of puzzling that you were able to remove your computer from the domain without Administrative rights. In order to add and remove a computer from the domain you need to have the rights to modify active directory. Are you completely sure that you removed the computer from the domain.

Before you go checking with the IT department, ensure that you do not have a logon to/from option on your login screen. If you do, click on the drop down box and see if you can recognize your domain. If you do not see a logon to/from option (usually right under password) make sure that you have your options expanded (there is an options button in the lower right hand corner of the login box; "Options <<" means options are expanded and you can close them, "Options >>" means that your options are closed and that you can expand them)

If you have done the above and cannot locate your domain, or do not have a logon to/from option, then you are correct that you are now a workgroup member.

If that is the case, then here is a basic explanation of what your IT department will most likely do.

If they have the capability to remote into your system, they can in order to readd your computer to the domain. As long as the comuter's SID (Security ID number) hasn't changed, then when your computer rejoins the domain, the domain should treat your computer like a long lost buddy and not change anything. This in turn would allow your profile to be accessed using the same User SID. If however, your Computer's SID has changed, then after a new profile is generated, the IT department will have to go into the registry to direct your SID to use your old profile instead of the new one.

HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileList is the location in the registry where all user SID's are directed to their associated profiles path. You can easily match the SID with the data path of the profile by looking at the ProfileImagePath key in each SID and matching it with the profiles path on the system. As long as you know where your old profile is located at, it's a simple matter of changing your new SID's ProfileImagePath to the old ProfileImagePath. Ofcourse in order to do this you cannot be logged into either profile, which means either an Adminstrator or 3rd party Administrative user will have to login and modify the registry.



10-24-2009, 12:56 AM
I have the exact same problem as kseine mentioned but i have the administrator password and can login as an administrator. But i cannot choose at startup other users than administrator. When i try to change back from workgroup to domain i get an error "A domain controller for the domain xxx could not be contacted". Is there any chance to get it fixed without giving my pc to a domain adminstrator?