So, I have this weird issue where the cached logons for interactive logon is set to 10, but will only cache one account. I log in as a standard user and that logon is cached, but after "run as administrator" is executed, using a separate domain account for local admin rights, the credentials just saved from the standard user are overwritten with that local admin domain account.
When this happens, the end user is not able to log back in without being on the domain, unless they immediately lock then unlock with their standard logon.