I'm trying to create a new group policy to lock down the server desktop for Terminal Services users. While testing, I've noticed that occasionally it does not apply correctly. It is not happening 100% of the time, so I started troubleshooting. I found an error in the winlogon.log file.
Error 1332: No mapping between account names and security IDs was done.
Local System account
This is happening on the Create Global Objects security policy setting, where Local System is the default. Any ideas what might cause this and how to resolve it?