Is the Domain Controller in the same VLAN or is it in a remote VLAN? Are there other PCs in the VLAN that are able to login to the domain or are no PCs in this VLAN able to login to the domain?
My guess is that you need to configure ip helper-address on the VLAN interface pointing to the address of the Domain Controller. The ping using ICMP is sent as a unicast. And the fact that ping works does prove that the PCs have IP connectivity. But the PCs may be trying to find the Domain Controller by sending NetBIOS subnet broadcasts. Try adding a helper-address and let us know if the situation improves.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...