每次在服务器上记录3个系统事件：

Event ID 14: The password stored in Credential Manager is invalid.
This might be caused by the user changing the password from this
computer or a different computer. To resolve this error,open
Credential Manager in Control Panel,and reenter the password for the
credential contoso\me.

Credential Manager中没有条目.无论我是否登录,无论我是否注销并使用本地管理员帐户删除我的个人资料,都会发生这种情况.

Event ID 40960: The Security System detected an authentication error
for the server cifs/ContosoDC.contoso.com. The failure code from
authentication protocol Kerberos was “The user account has been
automatically locked because too many invalid logon attempts or
password change attempts have been requested. (0xc0000234)”.

–

Event ID 1058:

The processing of Group Policy Failed. Windows attempted to read the
file
\contoso.com\SysVol\contoso.com\Policies{78719F0C-3091-4B5C-9BC3-6498F729531E}\gpt.ini
from a domain controller and was not successful. Group Policy settings
may not be applied until this event is resolved. This issue may be
transient and could be caused by one or more of the following: a)
Name Resolution/Network Connectivity to the current domain controller.
b) File Replication Service Latency (a file created on another domain
controller has not replicated to the current domain controller). c)
The Distributed File System (DFS) client has been disabled.

我检查了项目a-c,似乎没有.

我通过检查用户帐户是否未锁定,在服务器上运行gpupdate,然后重新检查立即锁定的用户帐户来彻底测试了这一点.我使用了锁定工具来揭示所有锁定都来自这个特定的服务器.用户帐户没有关联的电子邮件地址,我已经广泛研究了通常的已知锁定问题.

有什么线索吗？我正准备取下这个生产服务器并在AD中重置其计算机对象,但我不知道它会有所帮助.