Domain admin user can't access any server remotely

Mohamed Hemida 21 Reputation points
2020-10-23T12:28:21.127+00:00

Hello,
I have environment consist of parent and child domain, in the child domain I have domain admin user with all previlages assigned to him. what happened is that user went away for three weeks after coming back to office he found that his user can't access any machine remotely in the environment and get the following error message:
34569-715525.png

what I actually checked:
1: the user is using password when he is trying to log remotely
2: checking the logging hours and it's fine from Sunday to Saturday 12 am to 12 am
3: checking the group policy applied to its OU and nothing weird also his colleagues in the same OU can connect remotely properly.

for more information there are more details for this user:

AccountExpirationDate :
accountExpires : 9223372036854775807
AccountLockoutTime :
AccountNotDeltkated : False
adminCount : 1
AllowReversiblePasswordEncryption : False
AuthenticationPolicy : {}
AuthenticationPolicySilo : {}
BadLogonCount : 0
badPasswordTime : 132476636986532034
badPwdCount : 0
CannotChangePassword : False
CanonicalName : xx.yy.org.tk/Network team/officers/computer network center
John John
Certificates : {System.Security.Cryptography.X509Certificates.X509Certificate}
City :
CN : computer network center John John
codePage : 0
Company : Information Dept.
CompoundIdentitySupported : {False}
Country :
countryCode : 0
Created : 9/19/2013 12:23:01 PM
createTimeStamp : 9/19/2013 12:23:01 PM
Deleted :
Department : Computer Center
Description :
DisplayName : computer network center John John
DistinguishedName : CN=computer network center John John,OU=officers,OU=Network
team,DC=xx,DC=yy,DC=org,DC=tk
Division :
DoesNotRequirePreAuth : False
dSCorePropagationData : {10/19/2020 1:55:21 PM, 3/14/2020 6:18:19 PM, 3/14/2020
4:46:29 PM, 1/1/1601 2:00:00 AM}
EmailAddress : uk-john.john@yy.org.tk
EmployeeID :
EmployeeNumber :
Enabled : True
extensionAttribute15 : Information Technology Dept,
Fax :
garbageCollPeriod : 3024000
GivenName : Computer Center
HomeDirectory :
HomedirRequired : False
HomeDrive :
homeMDB : CN=LightA2,CN=Databases,CN=Exchange Administrative Group
(FYDIBOHF23SPDLT),CN=Administrative Groups,CN=yy
Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk
HomePage :
HomePhone :
Initials :
instanceType : 4
isDeleted :
KerberosEncryptionType : {None}
LastBadPasswordAttempt : 10/20/2020 12:34:58 PM
LastKnownParent :
lastLogoff : 0
lastLogon : 132478245104686772
LastLogonDate : 10/20/2020 11:50:20 AM
lastLogonTimestamp : 132476610206663809
ltkacyExchangeDN : /o=yy Exchange/ou=Exchange Administrative Group
(FYDIBOHF23SPDLT)/cn=Recipients/cn=user494c4a6a
LockedOut : False
lockoutTime : 0
logonCount : 4000
LogonWorkstations :
mail : uk-john.john@yy.org.tk
mailNickname : uk-john.john
Manager :
mDBUseDefaults : True
MemberOf : {CN=Comuunication Sector,CN=Users,DC=yy,DC=org,DC=tk,
CN=fs-arc&mab,OU=Electronic Archive,OU=Main Information Technology dep.,OU=Departments,OU=yy,DC=xx,DC=yy,DC=org,DC=tk, CN=Failover
Cluster Admin,OU=yy Groups,DC=yy,DC=org,DC=tk,
CN=WAAG,CN=Users,DC=yy,DC=org,DC=tk...}
MNSLogonAccount : False
MobilePhone :
Modified : 10/22/2020 11:52:37 AM
modifyTimeStamp : 10/22/2020 11:52:37 AM
msDS-FailedInteractiveLogonCount : 149727
msDS-FailedInteractiveLogonCountAtLastSuccessfulLogon : 149727
msDS-LastFailedInteractiveLogonTime : 132476600681699023
msDS-LastSuccessfulInteractiveLogonTime : 132478339551585576
msDS-SupportedEncryptionTypes : 0
msDS-User-Account-Control-Computed : 0
msExchAddressBookPolicyLink : CN=Information Technology Dept,,CN=AddressBook Mailbox
Policies,CN=yy Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk
msExchDumpsterQuota : 31457280
msExchDumpsterWarningQuota : 20971520
msExchELCMailboxFlags : 18
msExchHomeServerName : /o=yy Exchange/ou=Exchange Administrative Group
(FYDIBOHF23SPDLT)/cn=Configuration/cn=Servers/cn=yy-EX16MB1
msExchMailboxAuditEnable : True
msExchMailboxGuid : {112, 98, 152, 236...}
msExchMailboxSecurityDescriptor : System.DirectoryServices.ActiveDirectorySecurity
msExchMailboxTemplateLink : CN=After 3 Month Archive Then Permenant Delete,CN=Retention
Policies Container,CN=yy Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk
msExchPoliciesIncluded : {49625a13-9213-4fa3-a13a-de9dcacbd03f,
{26491cfc-9e50-4857-861b-0cb8df22b5d7}}
msExchRBACPolicyLink : CN=Default Role Assignment Policy,CN=Policies,CN=RBAC,CN=yy
Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk
msExchRecipientDisplayType : 1073741824
msExchRecipientTypeDetails : 1
msExchTextMessagingState : {302120705, 16842751}
msExchUMDtmfMap : {emailAddress:85667823262827, lastNameFirstName:,
firstNameLastName:}
msExchUserAccountControl : 0
msExchUserCulture : en-US
msExchVersion : 88218628259840
msExchWhenMailboxCreated : 10/20/2013 7:54:43 PM
mSMQDigests : {49 126 187 102 233 102 163 145 102 210 170 141 34 164 75 92}
mSMQSignCertificates : {1, 0, 0, 0...}
Name : computer network center John John
nTSecurityDescriptor : System.DirectoryServices.ActiveDirectorySecurity
ObjectCattkory : CN=Person,CN=Schema,CN=Configuration,DC=yy,DC=org,DC=tk
ObjectClass : user
ObjectGUID : edd550e6-6bc8-41b8-ab82-1ee7d17495b0
objectSid : S-1-5-21-1199735173-3496644943-735968062-5333
Office :
OfficePhone :
Organization :
OtherName :
PasswordExpired : False
PasswordLastSet : 10/22/2020 11:14:50 AM
PasswordNeverExpires : True
PasswordNotRequired : False
POBox :
PostalCode :
PrimaryGroup : CN=Doxx Users,CN=Users,DC=xx,DC=yy,DC=org,DC=tk
primaryGroupID : 513
PrincipalsAllowedToDeltkateToAccount : {}
ProfilePath :
ProtectedFromAccidentalDeletion : False
protocolSettings : {HTTP§0§1§§§§§§, OWA§0}
proxyAddresses : {sip:uk-john.john@yy.org.tk,
SMTP:uk-john.john@yy.org.tk}
pwdLastSet : 132478316900865277
SamAccountName : uk-john.john
sAMAccountType : 805306368
ScriptPath :
sDRightsEffective : 15
servicePrincipalName : {MSSQLSvc/elgeneral.xx.yy.org.tk:1433,
MSSQLSvc/elgeneral.xx.yy.org.tk}
ServicePrincipalNames : {MSSQLSvc/elgeneral.xx.yy.org.tk:1433,
MSSQLSvc/elgeneral.xx.yy.org.tk}
showInAddressBook : {CN=Information Technology Dept, Address List,CN=All
Address Lists,CN=Address Lists Container,CN=yy
Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk,
CN=All Users,CN=All Address Lists,CN=Address Lists
Container,CN=yy Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk,
CN=Mailboxes(VLV),CN=All System Address Lists,CN=Address Lists
Container,CN=yy Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk,
CN=Information Technology Dept,,CN=All Global Address
Lists,CN=Address Lists Container,CN=yy Exchange,CN=Microsoft
Exchange,CN=Services,CN=Configuration,DC=yy,DC=org,DC=tk...}
SID : S-1-5-21-1199735173-3496644943-735968062-5333
SIDHistory : {}
SmartcardLogonRequired : False
sn : Computer Center John John
State :
StreetAddress :
Surname : Computer Center John John
Title : Computer Center
TrustedForDeltkation : True
TrustedToAuthForDeltkation : False
UseDESKeyOnly : False
userAccountControl : 590336
userCertificate : {48 130 5 48 48 130 4 24 160 3 2 1 2 2 19 102 0 0 189 146 36
118 233 148 114 152 242 95 0 4 0 0 189 146 48 13 6 9 42 134 72
134 247 13 1 1 11 5 0 48 82 49 18 48 16 6 10 9 146 38 137 147
242 44 100 1 25 22 2 101 103 49 19 48 17 6 10 9 146 38 137 147
242 44 100 1 25 22 3 111 114 103 49 19 48 17 6 10 9 146 38 137
147 242 44 100 1 25 22 3 109 111 105 49 18 48 16 6 3 85 4 3 19
9 109 111 105 45 67 65 45 67 65 48 30 23 13 49 57 49 48 49 57
49 51 52 53 53 50 90 23 13 50 49 49 48 49 56 49 51 52 53 53 50
90 48 44 49 42 48 40 6 9 42 134 72 134 247 13 1 9 1 22 27 117
107 45 109 111 115 116 97 102 97 46 109 97 116 97 114 64 109
111 105 46 111 114 103 46 101 103 48 130 1 34 48 13 6 9 42 134
72 134 247 13 1 1 1 5 0 3 130 1 15 0 48 130 1 10 2 130 1 1 0
235 76 166 162 22 20 183 142 169 35 136 109 115 254 19 229 125
36 114 228 59 204 220 105 29 161 113 36 162 224 240 210 192 38
225 43 133 197 2 188 235 112 89 175 178 149 242 56 207 180 224
10 167 92 208 58 129 64 199 14 175 8 241 199 85 208 241 82 54
211 48 132 28 27 74 59 21 54 143 169 11 221 176 23 153 127 85
74 153 214 55 44 46 118 82 247 89 207 214 33 16 88 57 56 105
41 3 96 63 23 125 95 67 190 99 196 187 86 210 192 117 251 208
133 57 181 187 199 39 217 36 43 104 231 45 85 226 236 132 91
179 176 157 170 55 241 149 138 7 55 49 16 53 153 61 214 91 121
161 217 145 145 123 196 240 102 62 244 66 37 128 30 177 242
139 78 149 157 141 93 30 58 94 100 34 118 253 103 64 101 59
220 201 30 238 115 150 108 231 192 171 113 7 52 6 136 45 42
193 96 225 14 208 25 232 188 5 221 202 31 201 144 41 122 253
193 148 136 78 206 251 27 242 247 87 219 136 74 146 224 19 136
186 194 135 184 215 1 48 215 208 170 179 150 242 31 2 3 1 0 1
163 130 2 35 48 130 2 31 48 62 6 9 43 6 1 4 1 130 55 21 7 4 49
48 47 6 39 43 6 1 4 1 130 55 21 8 135 219 247 51 133 149 244
43 131 133 155 8 130 141 179 3 131 166 245 37 129 106 132 131
221 47 133 243 138 70 2 1 100 2 1 41 48 51 6 3 85 29 37 4 44
48 42 6 10 43 6 1 4 1 130 55 20 2 2 6 8 43 6 1 5 5 7 3 2 6 8
43 6 1 5 5 7 3 4 6 8 43 6 1 5 5 7 3 1 48 14 6 3 85 29 15 1 1
255 4 4 3 2 5 224 48 65 6 9 43 6 1 4 1 130 55 21 10 4 52 48 50
48 12 6 10 43 6 1 4 1 130 55 20 2 2 48 10 6 8 43 6 1 5 5 7 3 2
48 10 6 8 43 6 1 5 5 7 3 4 48 10 6 8 43 6 1 5 5 7 3 1 48 129
148 6 9 42 134 72 134 247 13 1 9 15 4 129 134 48 129 131 48 14
6 8 42 134 72 134 247 13 3 2 2 2 0 128 48 14 6 8 42 134 72 134
247 13 3 4 2 2 0 128 48 7 6 5 43 14 3 2 7 48 10 6 8 42 134 72
134 247 13 3 7 48 11 6 9 96 134 72 1 101 3 4 1 42 48 11 6 9 96
134 72 1 101 3 4 1 45 48 11 6 9 96 134 72 1 101 3 4 1 22 48 11
6 9 96 134 72 1 101 3 4 1 25 48 11 6 9 96 134 72 1 101 3 4 1 2
48 11 6 9 96 134 72 1 101 3 4 1 5 48 29 6 3 85 29 14 4 22 4 20
3 27 250 4 245 43 241 74 230 103 152 156 188 192 16 145 158
191 176 218 48 31 6 3 85 29 35 4 24 48 22 128 20 242 18 55 130
52 76 139 194 254 157 128 195 136 79 228 37 234 16 254 54 48
126 6 3 85 29 31 4 119 48 117 48 115 160 113 160 111 134 50
104 116 116 112 58 47 47 69 110 99 114 121 112 116 105 111 110
45 73 73 83 46 77 111 105 46 111 114 103 46 101 103 47 67 82
76 47 109 111 105 45 67 65 45 67 65 46 99 114 108 134 57 104
116 116 112 58 47 47 69 110 99 114 121 112 116 105 111 110 45
73 73 83 45 66 97 99 107 117 112 46 77 111 105 46 111 114 103
46 101 103 47 67 82 76 47 109 111 105 45 67 65 45 67 65 46 99
114 108 48 13 6 9 42 134 72 134 247 13 1 1 11 5 0 3 130 1 1 0
45 248 229 191 33 145 5 124 142 113 127 174 250 75 33 62 160
242 53 170 114 79 151 29 158 115 112 84 80 8 202 148 73 207
125 103 129 40 253 145 166 192 101 112 117 39 23 3 186 152 82
166 141 167 196 17 28 35 106 43 68 180 233 242 137 31 12 61
125 112 150 32 65 74 120 183 151 107 25 81 183 29 126 206 28
127 31 32 184 222 201 21 35 163 78 238 185 144 239 33 85 198
186 10 204 190 234 166 121 40 91 154 190 13 238 251 92 112 89
233 85 150 176 183 190 228 116 33 27 35 5 251 215 210 182 216
172 228 4 237 250 66 71 229 71 120 184 128 64 168 117 138 231
182 132 235 5 247 242 100 191 72 117 12 95 21 185 31 224 147
203 234 121 152 196 73 203 46 148 64 221 97 188 38 219 10 161
156 93 240 131 204 12 112 192 248 122 172 57 34 235 39 42 150
50 229 160 198 228 34 37 215 249 204 101 218 76 22 237 94 136
7 168 117 91 206 99 72 118 57 37 117 126 10 210 156 233 171
161 154 77 5 135 235 184 183 180 132 204 109 73 30 14 184 60
140}
UserPrincipalName : uk-john.john@xx.yy.org.tk
userSMIMECertificate : {48 130 11 118 6 9 42 134 72 134 247 13 1 7 2 160 130 11 103
48 130 11 99 2 1 1 49 11 48 9 6 5 43 14 3 2 26 5 0 48 25 6 9
42 134 72 134 247 13 1 7 1 160 12 4 10 69 109 112 116 121 32
66 111 100 121 160 130 7 191 48 130 7 187 48 130 6 163 160 3 2
1 2 2 19 102 0 0 133 117 205 16 193 210 215 35 147 232 0 0 0 0
133 117 48 13 6 9 42 134 72 134 247 13 1 1 11 5 0 48 82 49 18
48 16 6 10 9 146 38 137 147 242 44 100 1 25 22 2 101 103 49 19
48 17 6 10 9 146 38 137 147 242 44 100 1 25 22 3 111 114 103
49 19 48 17 6 10 9 146 38 137 147 242 44 100 1 25 22 3 109 111
105 49 18 48 16 6 3 85 4 3 19 9 109 111 105 45 67 65 45 67 65
48 30 23 13 49 57 48 51 51 49 49 48 51 51 52 57 90 23 13 49 57
48 51 51 49 49 49 51 51 52 57 90 48 129 246 49 18 48 16 6 10 9
146 38 137 147 242 44 100 1 25 22 2 101 103 49 19 48 17 6 10 9
146 38 137 147 242 44 100 1 25 22 3 111 114 103 49 19 48 17 6
10 9 146 38 137 147 242 44 100 1 25 22 3 109 111 105 49 20 48
18 6 10 9 146 38 137 147 242 44 100 1 25 22 4 77 97 105 110 49
21 48 19 6 3 85 4 11 19 12 78 101 116 119 111 114 107 32 116
101 97 109 49 17 48 15 6 3 85 4 11 12 8 216 182 216 168 216
167 216 183 49 74 48 72 6 3 85 4 3 12 65 217 133 216 177 217
131 216 178 32 216 167 217 132 216 173 216 167 216 179 216 168
216 167 216 170 32 217 130 216 179 217 133 32 216 167 217 132
216 180 216 168 217 131 216 167 216 170 32 217 133 216 181 216
183 217 129 217 137 32 217 133 216 183 216 177 49 42 48 40 6 9
42 134 72 134 247 13 1 9 1 22 27 117 107 45 109 111 115 116 97
102 97 46 109 97 116 97 114 64 109 111 105 46 111 114 103 46
101 103 48 130 1 34 48 13 6 9 42 134 72 134 247 13 1 1 1 5 0 3
130 1 15 0 48 130 1 10 2 130 1 1 0 176 135 20 233 151 145 177
77 217 170 59 128 175 73 204 141 201 10 154 93 100 222 33 35
59 156 251 191 19 147 248 36 59 149 177 210 74 0 231 230 3 187
79 93 145 233 211 249 114 51 155 65 24 67 255 132 44 204 151
214 148 172 11 92 186 248 142 48 160 127 148 59 5 25 145 199
66 103 209 163 218 31 80 234 143 46 41 173 21 12 152 118 151
43 28 252 142 118 243 12 155 236 183 199 221 243 46 41 212 176
79 255 1 211 11 56 167 172 50 206 34 153 144 139 113 176 159
80 127 182 218 232 51 42 244 227 22 37 106 96 229 183 229 151
237 232 147 160 187 134 157 241 84 157 236 16 146 73 92 3 152
229 123 51 192 140 67 90 94 131 210 4 36 104 23 113 20 202 70
43 237 31 14 180 79 223 78 184 21 115 240 215 76 150 214 91 67
146 221 218 123 173 40 13 8 140 187 57 208 5 34 226 90 157 187
94 9 0 9 196 84 23 161 218 211 45 93 239 208 71 239 68 95 179
144 141 90 151 198 33 123 216 250 222 100 37 51 208 65 75 177
58 25 96 211 95 2 3 1 0 1 163 130 3 227 48 130 3 223 48 62 6 9
43 6 1 4 1 130 55 21 7 4 49 48 47 6 39 43 6 1 4 1 130 55 21 8
135 219 247 51 133 149 244 43 131 133 155 8 130 141 179 3 131
166 245 37 129 106 130 225 235 23 130 231 224 97 2 1 100 2 1
10 48 41 6 3 85 29 37 4 34 48 32 6 10 43 6 1 4 1 130 55 20 2 2
6 8 43 6 1 5 5 7 3 2 6 8 43 6 1 5 5 7 3 4 48 14 6 3 85 29 15 1
1 255 4 4 3 2 5 160 48 53 6 9 43 6 1 4 1 130 55 21 10 4 40 48
38 48 12 6 10 43 6 1 4 1 130 55 20 2 2 48 10 6 8 43 6 1 5 5 7
3 2 48 10 6 8 43 6 1 5 5 7 3 4 48 129 148 6 9 42 134 72 134
247 13 1 9 15 4 129 134 48 129 131 48 14 6 8 42 134 72 134 247
13 3 2 2 2 0 128 48 14 6 8 42 134 72 134 247 13 3 4 2 2 0 128
48 7 6 5 43 14 3 2 7 48 10 6 8 42 134 72 134 247 13 3 7 48 11
6 9 96 134 72 1 101 3 4 1 42 48 11 6 9 96 134 72 1 101 3 4 1
45 48 11 6 9 96 134 72 1 101 3 4 1 22 48 11 6 9 96 134 72 1
101 3 4 1 25 48 11 6 9 96 134 72 1 101 3 4 1 2 48 11 6 9 96
134 72 1 101 3 4 1 5 48 29 6 3 85 29 14 4 22 4 20 210 44 123
156 93 42 194 197 106 185 71 110 47 187 216 92 42 11 203 215
48 31 6 3 85 29 35 4 24 48 22 128 20 242 18 55 130 52 76 139
194 254 157 128 195 136 79 228 37 234 16 254 54 48 130 1 56 6
3 85 29 31 4 130 1 47 48 130 1 43 48 130 1 39 160 130 1 35 160
130 1 31 134 129 173 108 100 97 112 58 47 47 47 67 78 61 109
111 105 45 67 65 45 67 65 44 67 78 61 67 65 44 67 78 61 67 68
80 44 67 78 61 80 117 98 108 105 99 37 50 48 75 101 121 37 50
48 83 101 114 118 105 99 101 115 44 67 78 61 83 101 114 118
105 99 101 115 44 67 78 61 67 111 110 102 105 103 117 114 97
116 105 111 110 44 68 67 61 109 111 105 44 68 67 61 111 114
103 44 68 67 61 101 103 63 99 101 114 116 105 102 105 99 97
116 101 82 101 118 111 99 97 116 105 111 110 76 105 115 116 63
98 97 115 101 63 111 98 106 101 99 116 67 108 97 115 115 61 99
82 76 68 105 115 116 114 105 98 117 116 105 111 110 80 111 105
110 116 134 50 104 116 116 112 58 47 47 69 110 99 114 121 112
116 105 111 110 45 73 73 83 46 77 111 105 46 111 114 103 46
101 103 47 67 82 76 47 109 111 105 45 67 65 45 67 65 46 99 114
108 134 57 104 116 116 112 58 47 47 69 110 99 114 121 112 116
105 111 110 45 73 73 83 45 66 97 99 107 117 112 46 77 111 105

Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,250 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Karlie Weng 14,331 Reputation points Microsoft Vendor
    2020-10-26T02:54:14.517+00:00

    Hello @Mohamed Hemida

    Can other admain account remote connect on this pc?

    Please check the setting for group policy:

    Computer Configuration > Administrative Templates > System > Credentials Delegation: Restrict delegation of credentials to remote servers policy, set to Disabled

    34740-image.png

    ----------

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    Best Regards
    Karlie