Hi, Ok this is totally nuts but here we go. One user on our domain was issued with a new W7 laptop the other week. Following a change of password a few days ago the problems started. Basically he is having intermittent problem accessing network resources, namely our SQL server and Exchange server. When the problem occurs, attempting to access the SQL server results in a "Cannot create SSPI context" error, whilst attempting to start Outlook (2007 client to a 2010 server) results in a prompt for his domain password. Entering the password works but he shouldn't have to. Now the actual domain logon always works and he can access other resources such as file shares without any problems at all. If I change his password (either via the W7 client machine or the server), then the problem is cured but only until the next reboot, then it's back again. I even tried removing his account from the relevant security groups on the domain and this also cured the problem but only until the next reboot! Even more strangely, the problem seems limited to Windows 7 clients - if I log on as him on my W7 machine I get the same issues, whereas logging on at two different XP clients shows no problem. I'm really struggling to see what's wrong here, can anyone help me please? :( Many thanks, Toby.Toby

Noone has any ideas at all? :(Toby

If you create a new user with the same security groups etc is the problem still apparent for that user. Just trying to rule out corrupt profiles... shot in the dark.www.mypchealth.co.uk

Yep, recreated the user last night and the problem, whilst appearing initially fixed, reocurred shortly thereafter. Rebooted all the relevant servers to no avail. Oddly, it appears to be working at present but the problem is so intermittent that I can't be sure it's fixed and I've not done anything since the last time it occurred, so I'm not holding out much hope :(Toby

Hmm, bit more info. I seem to be getting an event log error with ID 5719: "This computer was not able to set up a secure session with a domain controller in domain XXX due to the following: There are currently no logon servers available to service the logon request..." Now there's nothing wrong with the domain controllers as every other user can log in without problems. The above event seems to be generated at every logon, yet the logon itself works and I can access most server resources fine. I'm also getting event ID 1030: "The processing of Group Policy failed. Windows attempted to retrieve new Group Policy settings for this user or computer. Look in the details tab for error code and description. Windows will automatically retry this operation at the next refresh cycle. Computers joined to the domain must have proper name resolution and network connectivity to a domain controller for discovery of new Group Policy objects and settings. An event will be logged when Group Policy is successful." This error only happens intermittently although I've not yet worked out if it coincides with the authentication issues I'm experiencing with SQL and Exchange. Anyone have any ideas what could be causing the above issues?Toby

Ok, the 5719 event was a red herring, caused by the wireless connection not being available until the user had logged in. Have put it on a wired connection and that error has gone. My original problem is back though, and is accompanied by the aforementioned event id 1030 pertaining to Group Policy. The error is as above but the details tab also says "Error Code: 1326", "ErrorDescription: Logon failure: unknown user or bad password". This would seem to be the root of my problems, although I have no idea why it's happening or how to fix it.Toby

What is the result after turning of the Windows firewall and other security software? Also, access Clean Boot to check the issue. If the issue disappears in the Clean Boot environment, you can continue to narrow down which entry is causing the issue. Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

Thanks for the suggestions. The firewall is disabled and there's no other security software on there. This morning I decided to nuke the machine and reinstall Windows 7 from scratch. All seemed fine until I tried switching from fixed networking to wireless and rebooting and then it reappeared. From this I can deduce that it wasn't anything peculiar to the previous installation of Windows, nor any third-party software installed thereon. Also, I was wondering yesterday whether there might have been some problem with cached credentials using an old password but, as the new installation has never even seen a password other than the current one, yet still failed, this seems also to not be the problem. I'm now out of ideas and have never seen anything this nuts in my life. I'm wondering whether to raise a support issue with Microsoft but I've never done this before - does anyone know what the deal is with regards to payment - i.e. how much it'll cost (am in UK) and whether it's a "no win no fee" system whereby they won't charge me unless the problem is solved? If they can fix it then it'd be worth every penny but I don't want to pay out and not get the problem resolved. Thanks for the help so far and any further advice.Toby