can't sign in because your domain is not available

Aligator Hereman 21 Reputation points
2021-07-06T07:37:25.45+00:00

Hi,

When trying to login with disabled wifi/ethernet, we getting error as in subject.

Would anyone know event viewer location for this message?

We have following policy set up (rsop.msc results from laptop) as number 4:

Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options > Interactive Logon: Number of Previous logons to cache

As per reference [1] we do not have this user part of Protected Group (SID S-1-5-21--525)

In some solutions it's asking to add DNS 8.8.8.8, which is not possible or required for us to use, thus will not try that.

Also some solutions suggesting to "Interactive Logon: Number of Previous logons to cache" to 0, which does not makes sense. As in other environment it is set to 10 and it works perfectly (user creds being cached).

[1] https://learn.microsoft.com/en-us/windows-server/security/credentials-protection-and-management/protected-users-security-group

Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,745 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Fan Fan 15,291 Reputation points Microsoft Vendor
    2021-07-07T00:49:07.853+00:00

    Hi,
    Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options > Interactive Logon: Number of Previous logons to cache value 4

    After the following policy was set, did you login the user on the machine with the with the connection to DCs?
    If not, the user will not be able to cache the credentials.

    We have to logon the user with connected to the DCs to cache the credentials, then if disconnected with the domain, the cached credentials will be used.
    If i misunderstand you, feel free to let me know.

    Best Regards,