Re: User is a member of too many groups

From: Amihai Bareket (amihai73_at_hotmail.com)
Date: 03/08/05

• Next message: ptwilliams: "Re: User is a member of too many groups"
• Previous message: Gunjan Desai: "Event id : 11 & Source: crypt32"
• In reply to: Roger Abell: "Re: User is a member of too many groups"
• Next in thread: ptwilliams: "Re: User is a member of too many groups"
• Reply: ptwilliams: "Re: User is a member of too many groups"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 8 Mar 2005 08:49:35 +0200

I'm using only domain local groups and adding specific users to a single
group.
That group is a member of another domain local which is a member of another
an so on...(Nesting).
Because of the size of the system, the number of group SIDs that the user
security access token needs to include is quite large.

How can I found out exactly how many group is the user connected to either
directly (can be done through IFMEMBER) or indirectly through nesting?

What about the access token limit? Can it be increased?

Thanks,

Amihai Bareket

"Roger Abell" <mvpNOSpam@asu.edu> wrote in message
news:u1mhXe6IFHA.1172@TK2MSFTNGP12.phx.gbl...
> Just a small observation for the initial poster.
> Notice that favoring domain global over domain local or
> universal from outside the account's domain will favorably
> increase the number of group sids that can be packed into
> the default size.
>
> --
> Roger
> "ptwilliams" <ptw2001@hotmail.com> wrote in message
> news:eKUv%23h0IFHA.572@tk2msftngp13.phx.gbl...
>> In addition to the other excellent posts, have you seen this KB?
>> -- http://support.microsoft.com/?id=327825
>>
>>
>> It talks about a number of registry settings that you may be able to
>> increase...
>>
>>
>> --
>>
>> Paul Williams
>>
>> http://www.msresource.net/
>> http://forums.msresource.net/
>>
>>
>
>

---

• Next message: ptwilliams: "Re: User is a member of too many groups"
• Previous message: Gunjan Desai: "Event id : 11 & Source: crypt32"
• In reply to: Roger Abell: "Re: User is a member of too many groups"
• Next in thread: ptwilliams: "Re: User is a member of too many groups"
• Reply: ptwilliams: "Re: User is a member of too many groups"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: User is a member of too many groups ... That group is a member of another domain local which is a member of another ... Because of the size of the system, the number of group SIDs that the user ... directly or indirectly through nesting? ... What about the access token limit? ... (microsoft.public.windows.server.active_directory) Re: User is a member of too many groups ... That group is a member of another domain local which is a member of another ... Because of the size of the system, the number of group SIDs that the user ... directly or indirectly through nesting? ... What about the access token limit? ... (microsoft.public.windows.server.general)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)