Good morning,
Problem:
A contractor we hired to spin up a new server finished and handed it off to the sysadmin team for my org. While the contractor's domain admin user account can log in successfully, all other user accounts (including domain admins) cannot log into the new server. They receive the error "The User Profile Service failed the sign-in", which prevents our domain admins from getting into to the server to do further work. OS Server2019.
Troubleshooting so far:
Restarted the User Profile service.
Testing found that this problem applies to user accounts that have never before successfully signed in to this machine. So the common fix I am finding on forum searches about deleting or changing the user profile registry entry does not apply to this situation. I tried to go through those steps and the registry entry for those user accounts did not exist.
For the purposes of testing, I signed into this server with a local admin account and attempted to run programs as a domain admin user. It failed with the error "Only part of a ReadProcessMemory or WriteProcessMemory request was completed."
I checked to make sure it was not a permissions issue as described in the troubleshooting steps for that following error, but as far as I can tell, the "Everyone" entry does have read permissions to the Default user profile folder. Perhaps there is another ACL issue that I'm not aware of.
EDIT: Please forgive the lack of relevant tags. As I am attempting to add tags, I find that nothing I can think of to enter is available to select.