Lately I've noticed that most of the child domain user accounts in the forest, at the place I work, having domain controllers in list of userWorkstations.
I can't really think of why it has been done. Well maybe RemoteApp or it's a security concern or credential pass for SSO application? Could anyone please explain me why could this been done.
https://msdn.microsoft.com/en-us/library/ms680868(v=vs.85).aspx
User-Workstations attribute
Contains the NetBIOS or DNS names of the computers running Windows NT Workstation or Windows 2000 Professional from which the user can log on. Each NetBIOS name is separated by a comma. Multiple names should be separated by commas.
Best Answer
That attribute is populated when you populate the "Logon To" in the properties of the user account. Why that was done in your environment is a question for the person who did it.