How can I increase the number of PCs a specific user can join to a domain?

1. Open the ADSI Edit MMC snap-in and connect to the Domain Naming Context.
2. Right-click on the domainDNS object for the domain you want to change and select Properties.
3. Edit the ms-DS-MachineAccountQuota attribute and enter the new quota value.
4. Click OK twice.

More info here

As you say, this affects ALL authenticated users, but you want specific users.

Try this:

Grant the "Create Computer Objects" and "Delete Computer Objects" Access Control Entries (ACEs) to the User

1. From the Active Directory Users and Computers snap-in, click Advanced Features on the View menu so that the Security tab is exposed when you click Properties.
2. Right-click the Computers container, and then click Properties.
3. On the Security tab, click Advanced.
4. On the Permissions tab, located the user object(s) you want to give the permissions to, and then click View/Edit.
5. Make sure the This object and all child objects option is displayed in the Apply onto box.
6. From the Permissions box, click to select the Allow check box next to the Create Computer Objects and Delete Computer Objects ACEs, and then click OK.

Based on Method #2 from "MSKB251335 Domain Users Cannot Join Workstation or Server to a Domain"

Related videos on Youtube

09 : 00

Changing Domain Join Limit on ms-DS-MachineAccountQuota Attribute in Windows Server 2019.

Fırat Boyan

489

06 : 03

Prevent normal users join computers to domain

microsoft lab

437

11 : 38

Increase the number of Times that the user Can Join To Domain.avi

Ahmed Emara

360

02 : 48

Increase the number of workstations a user can join to a domain

microsoft lab

2

05 : 20

How To Deny Domain Users To Join Computer To Domain Controller

Eng.Mahmoud Enan

1

Author by

nick rulez

Updated on September 18, 2022