Join domain while running PowerShell as system and specifying domain join credentials

I have a WORKGROUP machine that I need to join to the domain. I can access PowerShell on the machine as System using the installed RMM tool. But I get an error whenever I try to Add-Computer from the System account. My thought was it should work since System is an elevated account. Other elevated functions seem to work fine.

I store my domain admin credentials in $cred then try the following:

[System.Security.Principal.WindowsIdentity]::GetCurrent().Name NT AUTHORITY\SYSTEM

Add-computer -domainname domain.com -Credential $cred -restart -force

Add-Computer: Computer 'hostname' failed to join domain 'domain.com' from its current workgroup 'WORKGROUP' with following error message:

A device attached to the system is not functioning.

Anybody got a suggestion?

You cannot use SYSTEM account to join a computer to Active Directory. Yes the SYSTEM (also called Local System) can perform network operations contrary to Local Service, however it uses the credential of the computer object (hostname$) to authenticate against Active Directory, however in your case the object does not exist because the machine is not joined to the domain in the first place.

Now I understand you are passing the credentials of a permitted domain admin for the join operation, but the command still gets executed in SYSTEM context. My guess would be since the domain computer creates a secure channel between the computer and the domain and SYSTEM represents the computer object, it cannot fully complete the join operation as it is trying to change itself on the machine.

Another thing to take into account is if you have renamed the computer before the join operation, then you have to specify additional options in your command.

Add-Computer -DomainName domain.here -Options JoinWithNewName,AccountCreate -Credential (Get-Credential) -Restart