The security relationships between a computer account and its domain can be interrupted, In particular, at login, a message states: - That a domain controller cannot be contacted. - That the computer account may be missing. - That the computer account password is incorrect. - that the approval relationship (secure relationship) between the computer and the domain has been lost. 

Many administrators correct the problem by taking the computer out of the domain, then rejoining it in the domain. However, this procedure is not recommended, as it risks deleting the computer account completely. Microsoft offers four methods to correct the problem but the simplest is still a Powershell command, the others require interventions on the Active Directory side and on the client machine side, or even additional tools on the client side. There is also a graphical method via the Identity on Network wizard available in the system properties. You need to run this Powershell command on the local computer with an administrator account and have an account that has the right to modify the computer object in the domain.

Commands used in the video: Fix an approval relationship error on Active Directory login.

# To be run in Powershell on the machine with the problem and from a local administrator account.
Test-ComputerSecureChannel
# The answer must be False

# Specify the credentials of an account that has the right to modify the computer object in the domain
Test-ComputerSecureChannel -Repair -Credential (Get-Credential)
# The response must be True

Video : Fix an Active Directory sign-on approval relationship error