Issue discovered during abusive testing of domain joins / leaves.
In some cases samba will try to authenticate with stale AD secrets
in secrets.tdb rather than use the kerberos ticket specified in the
`net ads testjoin` command. This results in a pre-authentication
failure being returned by the underlying kerberos library. Expand
the list of "testjoin" error responses that trigger a domain rejoin
to include this particular one as well.