We have created a local account to run the CPOSSH service. We are now constantly seeing audit failures on our domain controller where the server is trying to authenticate the local account against the domain and it is even using the local server in the login. So the audits show <local server>\<account name> as the login on the domain controller. The odd thing is that everything is working correctly. So, my question is why is this trying to authenticate againts the domain and what might be we doing to cause that?