Re: Implication of changing samAccountName

Tech-Archive recommends: Fix windows errors by optimizing your registry

I changed my AD username recently and every day or two since, my account
appears to get locked out. I say appears because I first notice this with ISA
rejecting me. I then see that I cannot access network resources but on
checking, my account is NOT listed as locked or disabled.

If I then log out of my workstation, I cannot log back in. I have tested
with out workstations and I can't log inot them either.

If reset my password (even to the current password), everything is fine
again for a day or two.

Any thoughts? I am sure I covered all my bases related to the rename.

-c

"Chris" wrote:

We are currently carrying out this exercise on our AD. I've had no problems
as of yet. The users maintain their local profile as the SID is the same.

The only thing i've come across is the users remembering that their username
has changed

Chris

"G Johansson" <fantomen@xxxxxxxx> wrote in message
news:OP1G9Jn1HHA.5172@xxxxxxxxxxxxxxxxxxxxxxx
I don't think they will get a new profile since the sid remains intact.

Easiest is of course to test and I'm not sure if they will get a new
profile even if the name changes...
--
G Johansson
fantomen@xxxxxxxx

"Mr. Magoo" <MrMagoo@xxxxxxxxxxxxxxxxxxxxxxxxx> skrev i meddelandet
news:E9A1AA5F-C833-474E-A0E7-3C72237411C0@xxxxxxxxxxxxxxxx
True.
The only negative impact I can think of, is that upon logon onto a
Windows
XP or Windows Visa with the renamed account, users would get the local
profile recreated;that means that IE Favorites thing, desktop wallpaper,
etc
would get lost at that point. Can you think of something else?

"G Johansson" wrote:

It will still be the same user since the SID shouldn't change.

Compare with changing usernames, display name, sAMAccountName etc. in
ADUC
for example.

--
G Johansson
fantomen@xxxxxxxx

"Mr. Magoo" <MrMagoo@xxxxxxxxxxxxxxxxxxxxxxxxx> skrev i meddelandet
news:36F4CBBF-793C-4B40-9C41-791CF90AC77E@xxxxxxxxxxxxxxxx
Currently users logon as 'domain\John Slow'
If I write an ADSI script to change samAccountName and associated
attributes
to make users logon as
'domain\Jonh.Slow'

What would be the implication? That means I would lose the SID, group
membership permissions, etc?










.

Relevant Pages

  • Re: Deleted UserName-Need to re-activate
    ... If the account and/or the profile was deleted using Computer Management, ... Local Users and Groups or from Control Panel, System, User Profiles, you're ... This username was somehow removed ...
    (microsoft.public.win2000.security)
  • Profile Manager Copy To not available
    ... the migration was performed, a new user was created with ... the same username but for the new domain. ... I have tried to use the Copy To function on the Profile ... regardless of which account I am using. ...
    (microsoft.public.windowsxp.security_admin)
  • Profile Manager Copy To not available
    ... >the migration was performed, a new user was created with ... >the same username but for the new domain. ... >I have tried to use the Copy To function on the Profile ... >regardless of which account I am using. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: User gets married, changes name & wants log-in changed
    ... documents or local preferences are going to "move" to the new account. ... Why should a new profile be created? ... and that the variable %username% is not used here. ... For her local profile, a rename will have no effect, unless ...
    (microsoft.public.windows.server.active_directory)
  • Re: 1 Notebook unable to log in
    ... NETDOM RESETPWD Resets the machine account password for the domain ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ... | need to migrate their old domain profile [favorites, My Documents, ...
    (microsoft.public.windows.server.sbs)