We did more research today. We discovered that the DNS server addresses on the PCs on that other network segment were only pointing to the original AD DC. We added the second AD DC to their DNS pointer and that solved the problem.
Active Directory 2019 Won't Authenticate Users from Network Segment
Bradley Rinehart
96
Reputation points
Original AD is Windows Server 2016. Raised Forest level to 2012 R2 then 2016. Installed second AD Windows Server 2019. Both are domain controllers. Both in same Forest, same Site, on same network segment (example 192.168.1.0/24). No issues with user authentication if PCs on same network segment as DC. Users on network segment 10.10.2.0/24 will authenticate if the original AD is connected to the network. Will not authenticate if on the new AD 2019 is connected to the network. Login error says that a domain controller cannot be found. PCs are Windows 10