Lots of random Active Directory issues
Posted on 2012-08-21
I am migrating my 03 domain to 08. Have decommissioned one of the 03 boxes, have one left. At the site that no longer has the 03 domain and does have the 08 domain I have several users that have strange issues
Will come back from lunch (after screen locks) and their account will be locked out, no other devices are trying to login as them (like from a phone etc). The account will sometimes only show its locked out on one DC (local) but not the other.
User will be unable to change their password - it says it does not meet the complexity requirements, but it does - Ive tried multiple passwords and the same passwords as others that work fine - but still says that. I CAN change it to these same passwords directly in ADUC, but NOT from their workstation. Looked in event viewer locally and on the domain she is on (did a gpresult /R to see what DC she was connected to), didnt see anything strange..
One user could not get in to her PC at all - not trusted by domain. I joined workgroup, then back to domain and then she could login. 3 hours later it seemed to happen again but I looked and her account was locked - so unlocking it she could then get back in. I looked in ADUC and searched her PC name, didnt find it at all. Looked a few hours later, it was in the correct OU where it should be.
Randomly their desktop shortcuts disappear (not too concerned with this yet, still troubleshooting it)
Obviously there are some replication issues going on - let me know what tests to run and I can post the results here. Everything I have looked at seems to be "ok".