When pre-creating computer accounts they should be created by a user with domain admin rights or the same account that is used to join Task Runners to the domain.
A re-join fails if the user does not have the appropriate permissions. The error message: Re-using the account was blocked by security policy occurs.
https://support.microsoft.com/en-us/topic/kb5020276-netjoin-domain-join-hardening-changes-2b65a0f3-1f4c-42ef-ac0f-1caaf421baf8