users cannot log into Windows 2000 AD (Active Directory), if it was upgraded to the R2 Schema and is running in Windows 2000 Native mode.
If the R2 schema from Microsoft (not Vintela Authentication Services schema) is applied to a Windows 2000 Active Directory, in Windows 2000 Native mode, various security settings are too restrictive and Authenticated Users will not have the necessary access to the POSIX attributes required for VAS users to authenticate to Active Directory.
Run the ldif file, vas_schema_win2k_native_r2.ldif, which is attached to this Solution. This ldif file will be included in the soon to be released VAS 3.1, in \schema\win32\ldif\vas_schema_win2k_native_r2.ldif.
SYNTAX C:> ldifde -i -f vas_schema_win2k_native_r2.ldif -v -c DC=X dc=forest,dc=root
NOTE: replace dc=forest,dc=root with your forest root.