I've been running into mysterious reports of no one being able to login on lab computers running 10.9.5 and the native AD client. Historically, this has meant domain connectivity issues, but when tested the machines seem to be connected, just not processing logins. The only trigger seems to be not rebooting after a day or so. NTP is enforcing the correct time. The testing command used is:
id -P `dscl '/Active Directory/DomainHere/All Domains' -list Users | sed "${RANDOM:1:3}q;d"` | grep -v System.Administrator
Does anyone have suggestions of better (automatable) tests or logs to check for a better idea of what is going on?
