When cloning machines that have been or will be joined using Authentication Services what steps are recommended.
Option # 1
The simplest method is to clone machines before they are joined when possible. When the cloned machines are created and then joined they will have a unique computer object based on their unique hostname.
Option # 2
In some environemnts it is required to clone machines that are already joined, it is unavoidable.
In this scenario after cloning the machine and starting it for the first time it is important to delete the vas.conf and the keytab from these locations.
After these are removed and the machine has been assigned a unique hostname and other settings it can be safely joined to Active Directory.