Permissions required to change Computer Name in AD

LMS 1 Reputation point
2024-02-05T07:20:23.07+00:00

We have delegated "Write All" properties for the service desk on OU where all PCs located. While renaming the computer we get message "Access is Denied". Looking for support to fix this issue Thanks in advance

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,635 questions
0 comments No comments
{count} votes

4 answers

Sort by: Most helpful
  1. Thameur-BOURBITA 33,006 Reputation points
    2024-02-05T07:35:58.59+00:00

    Hi @LMS

    It’s not possible to rename computer object directly in Active Directory. To rename a server or computer you have to connect on the machine with a administrator account member of local administrator group.

    when you rename computer name the computer object will be renamed automatically in Active Directory

    Please don’t forget to accept helpful answer


  2. LMS 1 Reputation point
    2024-02-05T09:59:23.2633333+00:00

    We are renaming from the computer itself. We found the issue with ‘Network access: Restrict clients allowed to make remote calls to SAM’ settings applied at DC level. Later we added the service desk team to the setting and it works fine now

    0 comments No comments

  3. Thameur-BOURBITA 33,006 Reputation points
    2024-02-05T18:20:51.63+00:00

    Hi @LMS

    happy to see your problem fixed. I will add your answer as a comment to be able to accept it as helpful answer and help forum visitors to identify the solution


  4. Megas, Nick - OASAM OCIO CTR 0 Reputation points
    2024-03-28T18:48:13.5766667+00:00

    Thanks LMS, we were having same issue after applying stigs to our DCs but after adding the failing accounts to this Network Access setting we are good again!

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.