Yes, I was just about to post an update. Someone did indeed create an AD user account
named:
root(a)sample.college.edu
If I can't get the other user to agree to remove root(a)sample.college.edu AD user
object, then I think I'd be required to make users login as
useraccount(a)sample.college.edu due to this file permission change issue and other issues
that would likely occur. However, your default_domain_suffic seems to be here to save the
day.
Would something like the following first attempt to resolve local user accounts prior to
AD?
default_domain_suffix = LOCAL,
SAMPLE.COLLEGE.EDU
I put the following like in the domain section to allow short domain names.
[
domain/sample.college.edu]
use_fully_qualified_names = False
I'm trying it now and it currently appears to work. There currently is no conflict
between local user root and domain user root, but last time it took a day or two for the
error to pop up. Do you think this config is safe?