Is there a way to deny access to the domain based on the windows 10 build that a PC/Laptop has installed?

Ryan Chetty 1 Reputation point
2022-11-23T07:24:40.357+00:00

Hi All, I have tried searching the internet for an answer to this but most of the articles come up with "how to join back to the domain". What i am looking for exactly is, if my PC is off the domain and is running Windows 10 x64 1809, if I try to join it back to the domain, the domain controller should deny the request based on the build version of Windows. It should then only allow the PC back on the domain when it has been upgraded to for example 21H2.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,931 questions
Microsoft Entra
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Dave Patrick 426.1K Reputation points MVP
    2022-11-23T15:37:53.677+00:00

    Probably not. A better solution may be to limit the computer join permissions.
    https://www.rebeladmin.com/2015/05/how-to-allowprevent-domain-users-from-join-workstations-to-domain/

    --please don't forget to upvote and Accept as answer if the reply is helpful--

  2. Limitless Technology 43,966 Reputation points
    2022-11-26T14:40:26.877+00:00

    Hello

    Thank you for your question and reaching out. I can understand you are having query related to join to AD domain for specific OS versions.

    As far as I know, it looks that we could not do that based on machine OS version, as there is no the built-in method to do that while joining to Domain.

    --------------------------------------------------------------------------------------------------------------------------

    --If the reply is helpful, please Upvote and Accept as answer--

    0 comments