I have an interesting issue. My product is a turn-key server (HP DL G6) with a Server 2008 R2 platform image, along with instructions to setup\create a new domain. We have found that servers setup from our in-house manufacturing require the Administrator password to be changed after the dcpromo is run. So, before the dcpromo is run, the Administrator account does not ask for a password change, you can reboot, logout\login, etc… but once the dcpromo is run, and restarted, the system wants you to change the Administrator password. The password is super-complex…there are no issues I can tell with the default domain policy, which is at default at that point. If you add a ‘1’ to the end of the existing password it takes it. Now…if I reimage the same hardware, same sysprep, following the same instructions with the exact same image DVDs that manufacturing has…it behaves normal and doesn’t request a password change. One hint…the Administrator password is the same password we enter for the Directory Services Restore Mode Administrator password.
So, I think we have narrowed the scope down to what our manufacturing group is doing. They took the DVDs and put them on an image server that they use to apply the image through the network. I can’t figure what they could be doing, or in their process, to require an Administrator password change after a dcpromo. I don’t know of any type of BIOS issue that would behave this way. Keep in mind this is a mature product that has been tested well, only after the manufacturing systems have arrived (3 for 3) has this happened.
Any help or insight is appreciated.