The
number of workstations a user can join to a domain is configured by the
ms-DS-MachineAccountQuota attribute. Using the Active Directory Service Interfaces Editors (ADSI Edit) you can manage Active Directory
objects and attributes.
To
run ADSI Edit on Windows Server 2003 or Windows XP machines, you'll need to
install Windows Server 2003 Support Tools, which you'll find on the Windows
Server 2003 CD or theMicrosoft Download Center. If you're running
Windows Server 2008, ADSI Edit is installed as part of the Active Directory
Domain Services (AD DS) role, which makes the server a domain controller. You
can also install the Remote
Server Administration Tool (RSAT) on
server that aren't domain controllers. On machines running Windows
Vista SP1 or Windows 7, you must install RSAT to use ADSI Edit.
Once
you have ADSI Edit installed, you can change the ms-DS-MachineAccountQuotaattribute with the following steps:
1. Click
Start | Run | and enter adsiedit.msc.
2. Expand
the Domain node and locate the object that begins with "DC=" and
contains the domain name of the domain your interested in.
3. Right
on the "DC=" object and click Properties.
4. Locate
the ms-DS-MachineAccountQuota attribute on the Attribute Editor tab and click
Edit.
5. On
the Integer Attribute Editor dialog, enter the number of workstations you want
users to be able to add. You can enter 0 to prevent users from joining any
workstations to the domain or clear the value to remove the limit.
6. Once
you've entered the appropriate value, click OK to close the Integer Attribute
Editor dialog box and OK again to close the Properties box.
7. Close
ADSI Edit.