Your technology certification is waiting. Enroll in Cloud Class ®
First, the computer starts to seem distant. It doesn't talk to the domain like it used to. The computer begins to act funny, like working late more, paying more attention to its appearance, and getting snappy when the domain asks about it. Then, one of the other computers in the domain sees the computer hanging out in a different LAN or subnet. The domain tries to reach it, but can't. Finally, the domain catches the computer in a lie. And then, the trust relationship is broken.
1. The secure link between the PC and the Directory is broken due to a disruption in the presentation of credentials. If the PC presents the wrong password, the authentication is denied. Each Windows-based computer maintains a machine account password history containing the current and previous passwords used for the account. When two computers attempt to authenticate with each other and a change to the current password is not yet received, Windows then relies on the previous password. If the sequence of password changes exceeds two changes, the computers involved may be unable to communicate, and you may receive error messages (for example, "Access Denied" error messages when Active Directory replication occurs).
2. The client machine presents the right password, but the wrong machine account. If the images that are being used are cloned without properly being SysPrepped, the scenario arises where two machines are presenting the same SIDs, while the passwords are out of sync.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Please enter a first name
Please enter a last name
Must be at least 4 characters long.
Join and Comment
From novice to tech pro — start learning today.
Premium members can enroll in this course at no extra cost.