RE: sid

From: diasmith [MSFT] (diasmith_at_microsoft.com)
Date: 10/30/03 

Date: Thu, 30 Oct 2003 18:09:45 GMT

Hello,

Microsoft Technical Support has a command-line tool available that will
resolve a fully qualified SID to a user account against a local or remote
user account database. Sid2name.exe was recently built to resolve SID
references in Security Audit Logs.

SID2NAME is a utility program to look up the user account name associated
with a Windows NT, or higher, security identifier (SID). The command takes
one argument, the SID, and performs a lookup in the Windows NT account
database. An optional command argument can specify on which Windows NT
computer to perform the lookup for computer-specific (local) accounts.

The generic form of the command is:

sid2name <sid> [\\ComputerName] | [ComputerName]
        

Example:

To find out what user account name is associated with the SID
S-1-5-21-456721184-3344012123-1234567890-1234, type the following line at
the command prompt:

        sid2name S-1-5-21-456721184-3344012123-1234567890-1234

The information that is returned will be similar to the following

           DOMAIN\fred, is a user.
                                        

where DOMAIN is the domain name, or computer name, for the user account.

SID2NAME also identifies SIDs for security principals that are groups.

Additional Examples:

- When this line is typed at the command prompt

                sid2name S-1-5-21-2092848103-1120294241-1737835142-1001
                
   you may see DOMAINNAME\randy, is a user.
                                                                

- When this line is typed at the command prompt

                sid2name S-1-5-21-2092848103-1120294241-1737835142-1001 randy2
                
   you may see DOMAINNAME\randy, is a user.
                                                                

- When this line is typed at the command prompt

                sid2name S-1-5-21-2092848103-1120294241-1737835142-1001 \\randy2
                
   you may see DOMAINNAME\randy, is a user.
                                                                

I have attached the utility to this email.

Thank You.

diasmith@online.microsoft.com

This posting is provided "AS IS" with no warranties, and confers no rights.

Relevant Pages

  • RE: Unknown Account
    ... resolve a fully qualified SID to a user account against a local or remote ... Sid2name.exe was recently built to resolve SID ... SID2NAME is a utility program to look up the user account name associated ... An optional command argument can specify on which Windows NT ...
    (microsoft.public.win2000.security)
  • Re: SID History and SID Filtering questions (netdom)
    ... group policies rebooted the lab DC's and tried the command, netdom ... ... Oh and by the way the Technet doc on how to create a SID mapping file ... SID filtering is enabled automatically on any trust relationships created by domain controllers running Windows 2000 Service Pack 4 or Windows Server 2003. ...
    (microsoft.public.windows.server.migration)
  • Re: modifying path
    ... Most folks set their paths in a file called .bashrc (you will need to ... The MANPATH is where the MAN command looks for man pages. ... >i usually install or administer stuff from my user account on behalf of ... i queried my path for both root and my user account. ...
    (linux.redhat)
  • Re: Admin Printer Setup?
    ... I seem to be doing something wrong with the syntax. ... >user account to the local Administrators group (while ... open a command prompt and use this command: ... >> to connect to a network printer. ...
    (microsoft.public.win2000.printing)
  • Re: NTFS File Encryption Question
    ... I am certainly no expert on EFS and the XP implementation, ... know it is tied to the SID of the user account in question. ... >>>What do I need to do to be able to access these files on my laptop? ...
    (microsoft.public.windowsxp.general)