Hoping someone can help....
Been messing with this for WAY too long and haven't seen an answer anywhere so here goes:
1. This is a W2K3 domain and I'm deploying XP SP2 clients to existing W2K Pro clients.
2. The XP image I'm deploying is Sysprepped.
3. I create the task to push the image and perform a configuration task that will rename the machine according to template settings, put the machine in a new OU, then join to the domain.
4. Everything works except the part where it's supposed to join the domain. The image gets pushed to the client, the old machine account is deleted from the existing OU, and the new machine account is placed in the new OU I setup for the new clients.
In the event log for the task, everything shows "success" except the part about joining to the domain which shows "warning." Inside the log, I get the message
"Post configuration-Password doesn't meet complexity requirements. Check password length, history, etc." (This isn't verbatim, but pretty close as I don't have access to the server right now).
Now, I've tested this on a dev network, a separate test network, and the production network itself all with the same results. On the test network, I changed the password policy to basically allow anything and it still happens.
The Ghost service account is a member of the domain admins group and has even been explicitly been delegated full control over the OUs for both the existing machines and the new ones (this was in the troubleshooting stage in reference to a KB article on this site). The service account has a password that meets all complexity requirements and has been changed as well to a password that definitely doesn't match anything in the password history. And yes, like a lot of other posts on here, you can manually join the computer to the domain using the Ghost service account.
So, I'm guessing it's not the service account that's the problem...but what is it? The machine account password?
Anyone seen this before? Any ideas/suggestion greatly appreciated.