User has not been granted the requested logon type at this computer -- HELP!

Can you check the event log if it sheds in some more light about the details of the error?

i've checked event logs on both the PDC and the file server.  they are not showing any significant problems now and the problem persists.  i feel like there must be a corruption in the ACtive Directory or something.  is there some diagnostics i can run on that or someway i can refresh my AD?
something i noticed this morning that may be at the root of this is that the NIC on my File Server was showing a subnet mask differing from the PDC subnet mask.  i have fixed this and still no luck, but i'm wondering if that may have started the trouble?

it seems so odd to me that Admins can still access everything, but every other level of privilege is locked out.  i'm racking my brain trying to figure out what that can mean....

the event log on the FileServer lists the following potential problem...
"
The system failed to register host(A) resource records (RRs) for network adapter with settings:
<settings>

The reason the system could not register these RRs was because either a) the DNS server does not support the DNS dynamic update protocol, or b)the authoritative zone for the specificed DNS domain name does not accept dynamic updates.
"

this was after i ran ipconfig /dnsregister to try and reset the DNS connection between the fileserver and our PDC/DNS server.

Have you looked in the Security policy for anything out of the oridnary??

like what?

i restarted my PDC and in the security logs it's showing that NT Authority\System failed, "an unexpected error occurred during logon"

anybody? i'm dying over here.

so i've messed around with the privileges enough to deduce that it isn't with the privileges.  it's got to be some kind of policy somewhere, but i've dug through them both on the AD and on the local machines and FileServer and I can't find anything that seems like it would do this.

the language of the pop up leads me to believe that it is a security policy of some kind as it says "the requested *logon type*", but honestly, i've looked high and low and i can't find anything that seems to make any difference.

if i haven't mentioned it yet the PDC is running on W2k the FileServer on 2003.  i thought this wasn't supposed to be an issue.

Hi,

>>  is there some diagnostics i can run on that or someway i can refresh my AD?
Have you tried NetDiag and DCDiag from the command prompt?
(Windows support tools are needed.  http://support.microsoft.com/kb/301423 )

This won't exactly refresh your AD, but it will display any problems. Before to use /? to look at the possible switches.

Btw, have you chacked for viruses and spyware?

These 3 MS sites may help you troubleshoot using UserEnv.log
http://support.microsoft.com/kb/221833
http://technet2.microsoft.com/windowsserver/en/library/0907105e-7856-4c93-b97f-a9a306623af51033.mspx?mfr=true
http://technet2.microsoft.com/windowsserver/en/library/ccd7b430-99a5-40fd-b68a-6c1979e565a21033.mspx?mfr=true

Google your error message returned lost of results. Here are a few of them that claim to have been solved.
http://www.techsupportforum.com/networking-forum/file-application-sharing/66647-win-xp-home-logon-failure-user-has-not-been-granted-requested-logon-type.html
http://www.pcreview.co.uk/forums/thread-1716289.php  ** Local Security Setting Change ( Access this computer form the network. ) **

I hope one of these helps you.

Nice one. Glad you got it working.
How did you fix the Default Domain GPO corruption?

i removed all old unused and duplicate machines and users from the AD.