DC authentication issue
-DC generate Event id 675 (0x19) from Win2k8 machine
這是Windows 2003 和Windows 2008 在驗証協定上設計的不同點，有兩種方式可以避免:
1. We can check “Do not require Kerberos pre-authentication” of User account in AD user & computer console, we will not longer get the same event for users.
We can reference to KB: http://support.microsoft.com/kb/954415/en-us
2. Due to this shows that issue is with pre-authentication from machines. And we identified that issue was only with Vista and Windows 2008 machines and not with Windows XP and Windows 2003 machines.
Because of design change pre-authentication is not forced on Vista and Windows 2008 machines. We forced pre-authentication on Windows Vista machines using following registry value:
Value Name = DefaultEncryptionType
Type = Reg_DWORD
Value Data = 0x17(23)