I have rolled out MDT for imaging at my workplace. As part of the deployment process I have the customsettings.ini
file set to join our Domain. The technician is prompted to enter their administrative credentials and the appropriate OU and Domain is already set.
Everything works very well and the machine images properly, binding to the Domain and installing all software. However, in speaking with our Domain Administrator, each time we image a system the AD\Administrator user account is automatically locking. From what we can tell, it appears that the local "Administrator" account used on a target system for MDT is trying to either login locally or access network resources using the AD\Administrator account instead of the local Administrator account.
I have gone into the unattend.xml
file and specifically set the login user settings to use the "." domain, but the issue still persists. However, if we skip joining the Domain and have the system instead join "WORKGROUP" the issue goes away. I have checked the various log files MDT creates on the target systems, and have found no obvious indications as to why this would be. It occurs on all Task Sequences.
Does anyone have any suggestions?