Hi Imran,
Thanks for your post. Generally speaking, regarding the machine account password policy, this is refreshed periodically when the computer connects to the domain controller. If this password was not changed for over 30 days (default value), domain accounts - even with cached credentials - won't be able to login. You can change the maximum password age e.g. via GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options. The user-defined number of days between 0 and 999.
Reference: Domain member: Maximum machine account password age | Microsoft Learn
Best Regards,
Ian Xue
If the Answer is helpful, please click "Accept Answer" and upvote it.