Can someone direct me to documentation referring to how Windows populates the domain list via winlogon prompt ('log on to' section). I suspect this is by any trust that exists in the authenticating domain. What is happening in the background to process the list? Is it pinging the DCs, using NETBIOS, etc to locate the domains available. Also how does this vary across different OS versions?

Hi, The domain list is stored in the "C:\%systemroot%\system32\config\NETLOGON.FTL" file which have all trusted domains. Communication with a domain controller is needed in order to populate the domain list. The client will try to connect to the DC for the domain via doamin NetBIOS name. Trusted Domains Do Not Appear in the Available List for Domain Logon or Setting Security Permissions http://support.microsoft.com/kb/310611

Thanks Miles! So i have come across issues with a long wait time for domain list to be created the very first time a macine is added to a domain. Based on this answer, that long wait then should be attributed to two factors (assuming the domain is operational): 1. Delay in WINS/NETBIOS resolution 2. Populating the netlogon.ftl file with trusted domains within the recently joined domain. Subsequently logic suggests that in order to resolve, I could do one or all of the following; 1. Explicitly define default domain in registry 2. Prepopulate this file prior to domain join operation (if it could be edited directly) Does that seem correct? Is there a way to bypass the process besides CTRL+ALT+DEL? I assume why this happens once and not subsequent time after login is that it cached already. Thanks