RE: The SID question?!
- From: Anteaus <Anteaus@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 18 Jul 2008 10:02:25 -0700
From my experience it's a fairly academic consideration. If you areconcerned, then run Sysinternals' NewSID on all of the desktops.
Though, there are more serious security concerns in the domain model. For
example, that of 'administrative shares' giving access to ANY HD on the LAN
when logged-on to any desktop as a Domain-Admin user.
--------------------------
"This is a wonderful computer. It''s 20yrs old and absolutely reliable.
And, in all that time it''s only had four mobos, six processors, two cases,
seven OS''s ...."
"UselessUser" wrote:
Hi,.
We have a few computers in a workgroup that were cloned via Ghost from
bootfloppy. Ghostwalker etc was not used. I am trying to understand now we
are going to go down the domain route what exactly happens regarding the
SID's?
The computer from which the image was taken was joined to the domain and
then disjoined and rebooted before being ghosted. Once each machine is
ghosted it is joined to the domain. This does not seem to have caused any
problems.. I guess my main questions are:
Is there just one computer sid or is there a computer sid and a domain sid
If there is just one SID does this get changed when you join the domain etc
- (hence why my setup is working - and if this is the case how do local user
account ntfs permissions for example still work as surely the SID is not the
same?)
Does the SID problem only occur if I pulled down a image that was still
joined to a domain and then just rename the PC and then try to join? Getting
a bit confused about this topic as you can tell?
- References:
- The SID question?!
- From: UselessUser
- The SID question?!
- Prev by Date: RE: Annonymous browsing
- Next by Date: RE: Losing changes to documents
- Previous by thread: The SID question?!
- Next by thread: cannot logon
- Index(es):
Relevant Pages
|
