Figured it out. Both DC's had inconsistencies between configurations and they basically weren't replicating or failing to serve DNS requests because the Interfaces were all over the place.
I used this opportunity to take a crash course on Configuring DNS to understand all of the settings, and I was able to fix it by thoroughly sweeping the settings and correcting as I went.
I've never seen the Security log so empty before. It's a great feeling. Also, I learned a bit about DNS so win-win.
Did you ever figure this out?
The computer attempted to validate the credentials for an account.
Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
Logon Account: gijones
Source Workstation: DC1
Error Code: 0xC000006A
I recently opted to put Account lockout Policies in place as I'm learning more about the Security side of things having just passed my MTA Security. Instantly getting account lockouts on my account.
We never used elevation for admin privs, but we since stopped being idiots. I bring this up because we probably set up a lot of things with our older credentials, and the littlest bit of research tells me this is a mapped drive, a service, or a scheduled task that's trying to authenticate using incorrect credentials.
Things I've checked/additional info:
netlogon.log for accuracy and understanding. [LOGON] [716] DOMAIN: SamLogon: Network logon of (null)\gijones from DC1 Returns 0xC000006A (this code just means the user name is correct but the password is wrong)
We do use a VPN, and I have tunneled in from home previously, but I've double checked the service wasn't running on my home machine.
I've hit a point where I don't know where else to look. Now, I could just make a new username easy peasy and be done with it, but not knowing is driving me crazy. Any additional ideas on places to look or next steps? I'm tinkering around with Wireshark, so maybe if it's a mapped drive I could find it that way. Just gotta figure out these filters...
Among Trees - Got it yesterday and was able to play for about an hour. I'm a huge fan of survival games. Although an hour only got a toe into the game, it's really quite fun so far. Available in the Epic Games store. I had a $10 off coupon so I ended up paying only $9 for it. It's also Pre-Alpha, so I'm looking forward to future updates.
Also downloaded The Forest on PS4 after I had been playing Stranded Deep for about a week. Trying to persuade some of my friends to play it with me, because that just seems like more fun to me.
Man all y'all are lucky. I work at a college, lol. They making faculty staff and students do remote learning!
I really hoping to be at home soon. I have shit to do. Baseboards and doors need painted, cabinets need stained, I have 5 weeks until I take the Networking + test. I could really just use the extra time home in general.
Playstation had a sale in the store and I was able to buy Tomb Raider Definitive Edition (better than Shadow of the Tomb Raider somehow), Rise of the Tomb Raider, HUE, Dead Island, Dead Island Riptide, and Dead Island Retro Revenge (not a great game) for around $30!
It's only a matter of time before they send us all home for a while, so I got some mostly good games to play.
@Dashrender Ah, so in the future I need to pay more attention to the /26 part (which they did not notate here), but would have been implied had I known what I was doing prior to reading it.
I wasn't getting what I needed from my lesson and turned to google to grasp a better understanding of Subnetting. I'm reading this article : https://support.microsoft.com/en-us/help/164015/understanding-tcp-ip-addressing-and-subnetting-basics
About halfway down the page under Subnetting it explains that "The subnet mask 255.255.255.192 gives you four networks of 62 hosts each. This works because in binary notation, 255.255.255.192 is the same as 1111111.11111111.1111111.11000000. The first two digits of the last octet become network addresses, so you get the additional networks 00000000 (0), 01000000 (64), 10000000 (128) and 11000000 (192)....Using a subnet mask of 255.255.255.192, your 192.168.123.0 network then becomes the four networks 192.168.123.0, 192.168.123.64, 192.168.123.128 and 192.168.123.192. These four networks would have as valid host addresses:
192.168.123.1-62
192.168.123.65-126
192.168.123.129-190
192.168.123.193-254
Remember, again, that binary host addresses with all ones or all zeros are invalid, so you cannot use addresses with the last octet of 0, 63, 64, 127, 128, 191, 192, or 255."
What I don't understand is why they are excluding 63, 127, and 191? I've converted those to binary and they aren't all 1's or 0's
63=00111111
127=01111111
191=10111111
In fact, 64, 128, and 192 aren't all 1's or 0's either, are they incorrectly explaining leaving room for a switch or DC or is there another reason to exclude those numbers?
Edit: my binary conversions needed work, but I fixed that
Studying for my Networking + certificate with flash cards I made from the lessons. About 5/22 lessons through, with 139 flash cards made so far. Also drawing Fiber Optic connector types in Adobe Illustrator, and adding them to my desktop wallpaper so I have to see them constantly. Anything helps. Shooting for 8 weeks from now for the test.