SID security folder permissions for deleted AD user

From: "Barry Hallman" <BarryHallman@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 11 Jun 2005 18:47:02 -0700

My network necessarily has many users that are assigned explicit security
rights on several folders. When one of these users is deleted in AD, I have
checked the security settings on the folders and find that the user name has
been replaced by an SID with the same permissions. Do these SIDS for the
deleted users get purged from the system automatically? If so, what triggers
this event? If not automatically, is there an easy way to perform this
function? Thanks in advance
.

Follow-Ups:
- Re: SID security folder permissions for deleted AD user
  - From: Joe Richards [MVP]
- Re: SID security folder permissions for deleted AD user
  - From: Jerold Schulman
- Re: SID security folder permissions for deleted AD user
  - From: Tony Murray

Prev by Date: Recommended DNS Configuraiton on AD/DNS Server
Next by Date: Folder keeps getting replaced on my desktop - points to a network location.
Previous by thread: Recommended DNS Configuraiton on AD/DNS Server
Next by thread: Re: SID security folder permissions for deleted AD user
Index(es):
- Date
- Thread

Relevant Pages

Re: Vanishing icons on Desktop and in Recycle Bin
... Use the command prompt ... I couldn't see a SID #. ... Both of those SID # folders should open, ... My INFO2 opens. ...
(microsoft.public.windowsxp.help_and_support)
Re: NetworkService and LocalService accounts
... SID I can use that to add it to the others? ... folders and report back on how it went. ... To display Hidden files and folders... ... Hide protected operating system files, ...
(microsoft.public.windowsxp.configuration_manage)
Re: What links User ID with users Documents folder?
... The SID number. ... This registry key lists all of the SIDs. ... Should multiple users with the same account name ... When you delete an account you are given an option to keep or delete the user's folders. ...
(microsoft.public.windowsxp.general)
Re: Explorer owners column shows SID instead of name
... Right click on the root folder of the drive and do the usual to get to the Security tab and the option to take ownership of the files and select to "Replace owner on subcontainers and objects". ... If you have several valid owners on files on the drive and if you only want to replace the owner on the specific SID use the SubInAcl tool, ... But I also see files and folders all over the machine for which the displayed user is somebody's SID instead of the friendly name. ...
(microsoft.public.windowsxp.general)
RE: How to use ADMT3?
... we will use it to assign sid to all the folders ... since the email only need the user account ... resource domain migration to Windows Server 2003 ...
(microsoft.public.windows.server.migration)