![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 28.000000000000004%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPV%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
First, verify the client’s detected site using nltest /dsgetsite and confirm the workstation IP subnet exists under the correct London site in Active Directory Sites and Services. Ensure the London subnet objects are properly defined and associated with the intended site. Missing or overlapping subnet definitions commonly cause clients to authenticate against distant DCs.
Next, validate DC Locator behavior using nltest /dsgetdc:<domain> on affected systems. Flush cached locator information with nltest /dsgetdc:<domain> /force, or by restarting the Netlogon service.
Check the DNS configuration tied to the AD site coverage and ensure that the London AD site does not include DNS records of Tokyo domain controllers.
Keep in mind that majority of AD problems tie to misconfigured DNS.
If the above response helps answer your question, remember to "Accept Answer" so that others in the community facing similar issues can easily find the solution. Your contribution is highly appreciated.
hth
Marcin