Re: Same SID for all of my domain controllers??

Tech-Archive recommends: Fix windows errors by optimizing your registry

---

• From: "Paul Bergson [MVP-DS]" <pbergson@xxxxxxxxxxxxxxxxx>
• Date: Mon, 20 Nov 2006 16:03:49 -0600

---

I'm talking about the local machine. Yes I realize many things done on one
is equivalent to all, but before a dc is promoted it is a unique member in a
domain. Are you saying the local machine shares a common sid with the other
dc's?

--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

"Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx> wrote in message
news:OGOqHzLDHHA.3444@xxxxxxxxxxxxxxxxxxxxxxx

Nope. All Domain Controllers share the same SID. Consider in NT4 Days they
had a Shared SAM registry DB so it would have been impossible to have
their own SID, now that is simply in AD. If different DCs had different
SIDs, objects created in the domain would have different SIDs based on
what DC they were created on.

joe


--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net


---O'Reilly Active Directory Third Edition now available---

http://www.joeware.net/win/ad3e.htm


Paul Bergson [MVP-DS] wrote:

Doesn't each machine have it own local sid apart from the domain sid?

.

---

• Follow-Ups:
  • Re: Same SID for all of my domain controllers??
    • From: Joe Richards [MVP]

• References:
  • Re: Same SID for all of my domain controllers??
    • From: Joe Richards [MVP]
  • Re: Same SID for all of my domain controllers??
    • From: Paul Bergson [MVP-DS]
  • Re: Same SID for all of my domain controllers??
    • From: Joe Richards [MVP]

• Prev by Date: Re: delegate admin rights to an user in an OU
• Next by Date: Re: Help with LDAP PagedSearch
• Previous by thread: Re: Same SID for all of my domain controllers??
• Next by thread: Re: Same SID for all of my domain controllers??
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: how can I find the domain name if I have the domain sid? ... DN to build the path so I can get the DirectoryEntry object for the user sid ... "Joe Kaplan" wrote: ... resolve the name, so if the SID is from a trusted forest, you would bind to ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... (microsoft.public.dotnet.security) Re: How to find out file owner? ... get the original SID. ... Joe Kaplan-MS MVP Directory Services Programming ... Co-author of "The .NET Developer's Guide to Directory Services Programming" ... (microsoft.public.dotnet.security) Re: Unstable and Testing stability ... there hasn't been any problem worthy of note for using sid ... Novell's Directory Services is a competitive product to Microsoft's ... (Debian-User) Re: computer name recreated ... Paul Bergson ... MVP - Directory Services ... are the other error with the same sid. ... (microsoft.public.windows.server.active_directory) Re: moving accounts retaining SID ... MVP - Directory Services ... is sensitive to the SID of an account in relation to an extensive SQL ... (microsoft.public.win2000.active_directory)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > Windows  > microsoft.public.windows.server.active_directory  > 2006-11