1. Unbind from AD & reboot
2. Login and bind to AD. While Replace the “/Active Directory/All Domains” entry in the search path with “/Active Directory/adshortname/longadname” (ie:/Active Directory/whatever/whatever.local) Do the same for contacts in search policy. This is accomplished by unchecking the “Allow authentication from any domain in the forest” on the ‘Administrative’ tab of the AD utility. Make sure create mobile account @ login is checked and require confirmation isn’t.
3. Open ‘Network Preferences’ for both your Airport/wifi connection and Ethernet connection (any that might possibly be used off the LAN) and go to the DNS settings. In the “Search Domains” section create two entries: longdomainname local (make sure longdomainname is 1st)
4. reboot