An update to this: called into McAfee support and the tech went in and reissued my encryption token. Going back to the PC, got to the preboot, my username, and prompted with a new password/confirm page. Picking 12345, I got in, logged into windows, CAD Lock and unlock, and now logged in to the computer. I can no longer replicate the issue with my account as it will now log in to other new machines.
That info now makes me think this is a token issue. This is shifting the direction of the investigation. What changed to mess-up/break/corrupt the tokens that some new users and older users with newly changed PW are seeing. Any way to tell if other tokens are that way and how to fix behind the scenes?