I am implementing EBS in the existing Windows 2003 SP2 environment. At this point, there are new Windows 2008 servers, both domain controllers, both DNS servers, and 2 old domain controllers, one of them is a DNS server, another one is an Exchange server.
This setup was working for a while until I rebooted one 2003 and one 2008 server. After that, all users lost ability to log on to their computers. In addition, one one could open OWA and, I believe, Outlook (definitely, not from remote computers). With OWA, they receive: "HTTP 500 - The local Security Authority cannot be contacted". The only exception was from servers while logged in as domain admin.
I found a way to '"fix" it but it lasts for a very short time if users close Outlook or OWA. What I did was I went to the Account tab in ADUC and gave them access to all computers listed there.
It does the trick but only for a while.
No new group policies were introduced, unless they came with EBS and 2008 Server.
Thank in advance for your help.