Re: Cannot access NT 4 domain after user accounts migration
- From: "Alex" <Alex@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 15 Jun 2005 06:06:03 -0700
Hi,
Thanks for helping me,
This is a 2-way trust and it is still active.
How to compare the sIDHistory attribute against
the source SID?
Alex
"Paul Williams [MVP]" wrote:
> If you compared the SIDs they will be different. As the new user objects
> have new SIDs. Their old SID is stored in an attribute called sIDHistory,
> which is also built into the access token at logon. Therefore a SID
> comparison won't help in this instance (a SID is the domain SID with the RID
> appended to the end). You need to compare the sIDHistory attribute against
> the source SID.
>
> Re. the access.
>
> What kind of trust in place? One way or two way? Is it still active? Have
> you decommissioned anything yet?
>
> --
> Paul Williams
> Microsoft MVP - Windows Server - Directory Services
> http://www.msresource.net | http://forums.msresource.net
>
>
>
.
- Follow-Ups:
- References:
- Cannot access NT 4 domain after user accounts migration
- From: Alex
- Re: Cannot access NT 4 domain after user accounts migration
- From: Paul Williams [MVP]
- Cannot access NT 4 domain after user accounts migration
- Prev by Date: Re: Error 16650
- Next by Date: Re: Time server
- Previous by thread: Re: Cannot access NT 4 domain after user accounts migration
- Next by thread: Re: Cannot access NT 4 domain after user accounts migration
- Index(es):
Relevant Pages
|
