Hello all,

We are having issue after a "VMware Workspace ONE UEM Datacenter Migration to VMware Cloud on AWS ".

After the migration, we've been having issues with some accounts. We have Active Directory and ACC server on-prem.
ACC server was rebooted after migration as instructed by VMware, also DNS flush was performed as instructed.
ACC server can access the URL https://<xxxxxx>.awmdm.com/awcm/status and gets "Success" message

We have our main AD domain and below that we have 4 subdomains.

Main domain is configured in Workspace One console > Enterprise Integration > Directory services. Port 3269 is being used. Bind authentication is GSS-Negotiate. In advanced settings we have enabled the "search subdomains" selection.

We are unable to enroll Android devices and AD users in certain subdomain(s?). If we try to search the user, we can successfully get the user info but if we try to enroll the phone, we get
"Invalid User Credentials". Password is not incorrect and does not contain any illegal characters. We can login to domain-joined computer with these credentials.
We are able to enroll users that are in the main AD domain.

We have a workaround using the Stanging user account to enroll end user accounts but that is not a good workaround as the Boxer email client has then the same issue, getting the "Invalid credentials" error..

No settings have been changed in console, everything was working before the migration.
Anyone has had similar issues?