Re: How do I restore security only on XP Pro?

From: Vince C. (noname_at_hotmail.com)
Date: 04/30/03 

Date: Wed, 30 Apr 2003 16:21:39 +0200

"Torgeir Bakken (MVP)" <Torgeir.Bakken-spam@hydro.com> a écrit dans le message
de news:3EADD24F.824D87CB@hydro.com...
| "Roger Abell [MVP]" wrote:
|
| > Naaa , I am betting that will not work .
| > For example, when did you change the machine's
| > sid so its domain account info is sync'd.
|
| Hi
|
| SysInternals utility NewSID allows you to specify the SID that you want
applied, so you can set up the
| new computer with the same SID as the old one:
|
| http://www.sysinternals.com/ntw2k/source/newsid.shtml
|
| --
| torgeir
| Microsoft MVP Scripting and WMI, Porsgrunn Norway
| Administration scripting examples and an ONLINE version of the 1328 page
Scripting Guide:
| http://www.microsoft.com/technet/scriptcenter
|

Wow...

Thanks Torgeir and all the others. Looks like Indy's quest to the Holy Graal
:-s... I'm getting confused.

Peter's way looks pretty attractive but I understand it might not work.

How about integrally restoring the system and reinstalling Windows XP over it
(say from safe mode, for example)? I know this technique from Windows 9x and
2000. It keeps security, application and document settings while a full system
is installed as though it were the first time but by keeping your touchy stuff
intact.

Would it work? I have a clone of my machine. Assuming that I have set it to
VGA mode prior to saving it, would it work?

In my case I want to keep local accounts under which I have SQL Server run,
for instance. It would *** (just a bit) if I had to re-customize disk
security, folder settings, local groups, aso. Knowing I have the same security
database, I would be able to carelessly restore backed-up files and security
without worrying.

Thanks.

Vince C.

Relevant Pages

  • Re: Security issues with local filesystem caching
    ... bypassed (for instance the op that assigns a security label to an inode ... context if that was the basis of the check. ... the kernel that lasts as long as the cache is in active service. ... but once NFS had a SID, the two would then be the same. ...
    (Linux-Kernel)
  • Re: GetOwner and IdentityNotMappedException
    ... the SID, then the .NET code should be able to also, all things being equal. ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... especially when deleted security principals are involved. ...
    (microsoft.public.dotnet.security)
  • Re: Filtered Sid
    ... Source: Microsoft Windows security auditing. ... The description says that a SID has been filtered, even though SID filtering ... We just created a forest trust relationship between an AD2003 domain ...
    (microsoft.public.windows.server.active_directory)
  • Re: GPO/AD NULL SID problems
    ... That will dump your entire security token which I am curious to see. ... randomly being assigned to the 'NULL SID' security group instead of 'AUTHENTICATED USERS'. ... Occasionally when you stop applying group policy to the afflicted computer it will sometimes go back to the 'AUTHENTICATED USERS' group on reboot, but most of the time you have to remove the computer from the domain and add it again to get it out of the 'NULL SID' group. ... Filtering: Not Applied ...
    (microsoft.public.windows.server.active_directory)
  • Re: Bogus SID hanging around
    ... I've found the left-over SID on the security tab ... >particular the All Users profile. ...
    (microsoft.public.windowsxp.security_admin)