Solved

Can join machines to domain, but not login

Posted on 2011-09-07
5
218 Views
Last Modified: 2012-05-12
Out of the blue, I'm unable to log new machines into the domain.  I can join machines to domain, but when I try to log into the domain on them, I get the error "Account Not Found!"

I see the machines have been joined under the computers group when I look in AD, so they are being added.

Disjoining them, renaming and rejoining has no effect.

Know what is up?
0
Comment
Question by:Marketing_Insists
  • 2
  • 2
5 Comments
 
LVL 57

Accepted Solution

by:
Mike Kline earned 250 total points
ID: 36498557
So this happens on every machine?  Check the logs on the domain controllers and check the logs on the machines netsetup.log

More info here   http://technet.microsoft.com/en-us/library/cc961817.aspx

Did anything change that you know of because you said "out of the blue"

Thanks

Mike
0
 
LVL 13

Assisted Solution

by:khairil
khairil earned 250 total points
ID: 36498577
Hi,

Are this new computer? Are you cloning disk from master copy - like using ghost or something like that?

When computer cloned they have same SID and this will introduce error when computer attached to domain and user try to logon. You have to do sysprep prior cloning the image.

Try sysprep that affected computer first, just to know if it is the problem, here is how to do sysprep,:
1. For XP, http://support.microsoft.com/kb/302577
2. For 7, http://technet.microsoft.com/en-us/windows/ee530017

Good luck.
0
 

Author Comment

by:Marketing_Insists
ID: 36499324
Hi, to rule out duplicate SIDs, I did sysprep one and tried newsid (sysinternals) on another - same thing.  Systems are XP
0
 

Author Comment

by:Marketing_Insists
ID: 36499370
resolved: and here it is.

For whatever reason, logging in on XP machines using domain\userName  in the user name field was resulting in the error.

When I used my userName in the name filed, then chose the domain from the drop down, it worked.

Perhaps a recent change to the DCs after a recent patching?, but very strange.

Thanks for the help!
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 36499382
yeah that won't work  domain\username

you can also use the UPN to login   username@upnsuffix
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now