Re: XP clients get no logon server error - machine accounts lose password on 2003 AD domain

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: Todd J Heron (todd_heron_no_spam_at_hotmail.com)
Date: 02/22/05 

Date: Mon, 21 Feb 2005 23:18:32 -0500

You seem to have two problems here. Regarding the client problems, I've
seen this type of problem before. Can happen when the OS image does not
have the SID stripped out of it properly and a new one isn't gen'd properly
before the machine gets added to the network. Although there may not be
duplicate names out there, there may well be duplicate SIDs causing the
problem you are experiencing. This theory also corresponds with the DCDiag
error of RB_AP_ERR_MODIFIED complaining of identically named machine
accounts in the target realm. NTP time source and name resolution between
clients and servers is irrelevant to this scenario.

Regarding the NTFRS problems, you'll need to troubleshoot AD replication,
unless you also imaged the DCs, which is generally a bad idea if they are on
the same network, see below.

Troubleshooting replication:
http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/proddocs/en-us/Default.asp?url=/resources/documentation/windowsserv/2003/standard/proddocs/en-us/sag_adsite_trouble_1.asp 

-- 
Todd J Heron, MCSE
Windows Server 2003/2000/NT
----------------------------------------------------------------------------
This posting is provided "as is" with no warranties and confers no rights