Resolving SIDs to user names
- From: christoph@xxxxxxxxxx
- Date: 31 Aug 2006 05:36:53 -0700
Hi,
I'm not sure whether this topic belongs in this group, I didn't find
any better place.
Usually when I open the security tab of a file or folder the SIDs
contained in the Access Control Entries in the DACL are converted to
names - ok.
I have this scenario:
- Fileserver in Domain A, a DC for Domain A next to it
- XP client from Domain B, a DC for Domain B next to it
- a firewall seperates Domain A from Domain B, access from B to A is
open, from A to B only the DCs may talk - specifically the file server
may not talk to the DC for domain B.
When I open a share on A\Fileserver from the client and add an account
from Domain B to the DACL, that works fine. As soon as I close the
properties dialogue and re-open it, the name from Domain B can no
longer be resolved - it shows only the SID.
Now my question: which machine converts those SIDs to names? Does the
file server deliver the SIDs or the names to the client?
I hope this doesn't sound too weird, but we have some trouble
administering our file ressources, because we see only SIDs...
Any help?
Christoph
.
- Follow-Ups:
- Re: Resolving SIDs to user names
- From: Paul Williams [MVP]
- Re: Resolving SIDs to user names
- From: Paul Bergson
- Re: Resolving SIDs to user names
- Prev by Date: Re: AD and Expired Password Checking and how to test?
- Next by Date: Re: Remote Manage.
- Previous by thread: what value to specify as "Unique X.500 Object ID" for my custom attribute
- Next by thread: Re: Resolving SIDs to user names
- Index(es):
Relevant Pages
|
Loading
