Issue with laptop disjoint domain

Pierre-A · 2025-07-23T15:24:49.860Z

hello
i remove a laptop windows 11 from domain and reboot when i try to connect to the local user to put it in a new domain the only user i have is my domain account I’m sure i have a local user created .
how can i log back to the laptop with a local user ?
i reboot 2 time
Thanks

Jay-Updegrove · 2025-07-23T15:26:40.724Z

You’re off the domain and credentials are, apparently, not cached…you can’t login as the domain user, and that is not a local user, so there is no local user to log into.

Your best bet is to put it back on the original domain, login as an admin, verify the local user is created as a local (non-domain) user, then start the process over.

Pierre-A · 2025-07-23T15:30:24.334Z

i can’t since i have no option to log back in it present only with my domain admin account
is there a key combination i can use to switch user to a local one ?
Thanks

Jay-Updegrove · 2025-07-23T15:31:12.244Z

No, but if you boot into “Safe Mode” you can make the “local admin” account work, even if it’s normally disabled…

Pierre-A · 2025-07-23T15:43:40.519Z

im trying to do the power trick but even after 4 times it load and i have the login screen with only my domain admin account as an option to log in

Jay-Updegrove · 2025-07-23T15:46:37.908Z

Does your DA account still have the ability to log into the computer? If so, just open msconfig and turn on safe boot.

Pierre-A · 2025-07-23T15:50:04.248Z

no but i just try again holding shift and restart i was able to login in safe mode
i check the local user i create previously and it was not member of any group so i think this is why the option was not there

spiceuser-ti0ay · 2025-07-23T16:07:42.322Z

That’s odd. Usually, a local user account is automatically a part of the Users group, so that account should be able to login. That seems crazy that it would not be a part of any default group that gives the ability to actually use the account.

Maybe try using a Windows boot USB to get into command prompt, then add that user to a group? That might trigger the option.

You can also try the common trick of removing from power, completely discharging remaining power by holding the shut off button, then if luck would have it, it may give the Other User option to allow you to login with the local account (assuming there’s a misunderstanding with a created user not being in a group that allows for an actual login). May mean nothing, but that’s what I got.

Jay-Updegrove · 2025-07-23T16:14:57.546Z

You can switch from domain to local using the .\ switch before the username.

spiceuser-ti0ay · 2025-07-23T16:31:59.181Z

Yep. As long as there is an option to choose another user. Absolutely.

Rod-IT · 2025-07-23T16:32:15.563Z

Pierre A:

im trying to do the power trick

What’s this?

Was your domain set to use LAPS?

You can use Hirens to create a new local account.

Pierre-A · 2025-07-23T16:43:29.992Z

you know the power on … force shutdown 3 times ?
Thanks

spiceuser-ti0ay · 2025-07-23T16:48:01.010Z

I thought the power trick was to get it to bring up the Windows recovery and repair options, like get into safe mode, reset the PC, system restore, repair pc, etc.? Usually, the removal and discharging of all power (or even going as far as unseat/re-seat of the CMOS battery) kills any last logged in user block and gives that option of Other User where you can use the .\username and password to login to the local account.

Rod-IT · 2025-07-23T17:04:56.669Z

Pierre A:

you know the power on … force shutdown 3 times ?

I am not aware of how that is magic, I was hoping you would elaborate.

You skipped over the most important question though, was this LAPS enabled?

And for clarity, boot from Hirens and create a new account - ideally check there is a local account in future before removing something (it does advise you of this before removing a device from the domain too).

Pierre-A · 2025-07-23T17:54:40.136Z

hello
sorry no laps
i mean for the power you power on and power off 3 times and then you got the option to recovery boot safe mode etc…

Thanks

Pierre-A · 2025-07-23T18:03:53.876Z

it’s weird if i connect with the local user i check and he was part of the administrators group
i log with my domain admin credential and check the local user he’s not part of anything

strange

Jay-Updegrove · 2025-07-23T18:10:45.103Z

It’s a local user…logging in with a domain account checks domain groups.

Pierre-A · 2025-07-23T18:20:38.664Z

but if i don’t change it when i was logged with domain account after i remove the domain i was unable to log locally

Jay-Updegrove · 2025-07-23T18:24:26.503Z

You’d need to set local user permissions from the “Other Users” settings app panel. Add an account under “Other Users” give it admin if needed, set passwords, etc. then reboot. Login as the new local user, remove from the domain, reboot, login, join new domain, reboot, delete local user.

Rod-IT · 2025-07-23T18:37:43.492Z

So you don’t see the other user, is there any reason not to just create another one and move forward, you’re going to re-add it to another domain.

FYI, you could have simply moved it to the other domain, you can always later remove the old AD object.

But if the old AD is going, it wont matter too much.

Once removed from the domain, your domain account should no longer appear, so something has gone wrong here or there is a local policy that is doing something odd with the device.