How to fix “The session setup from the computer %% failed to authenticate. The following error occurred: Access is denied.”

I had rolled out a RODC to a remote office location, and after a while I noticed that the computers over there were not getting group policies applied to them. Some research into it revealed that by default domain computers aren’t allowed to change the password for the computer accounts. I had to do the following to fix it:

  1. 1.Active Directory Users & Computers -> Right click on the Properties the RODC (probably under Domain Controllers) ->Password Replication Policy -> Add
  2. 2.Allow the Domain Computers group.

This entry was posted in Active Directory. Bookmark the permalink.

Comments are closed.