Re: How to determine the SID of a Global Group
- From: "Laura E. Hunter [MVP]" <nospamplease>
- Date: Thu, 1 Dec 2005 09:40:04 -0500
Have you tried adfind, from www.joeware.net?
The following query:
adfind -default -rb ou=Marketing -f cn=marketingmgmt objectSid
....returns the following output for the MarketingMgmt global group:
>objectSid: S-1-5-21-751427308-4037830757-4109730475-1106
Adfind and its cousin, admod, are free dowloads from the site I reference,
and well worth becoming acquainted with.
HTH
--
Laura E. Hunter: MVP Windows Server - Networking
All replies to newsgroup, please
Post provided as-is, no warranties expressed or implied
"Scott Holman" <ScottHolman@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:FB6EDB3D-0612-475B-8E71-33080ADE299B@xxxxxxxxxxxxxxxx
> Hi all,
>
> I'm trying to find a util to determine the SID of a Global Group, but am
> having difficulty find one. I have Dumpsec from which I can determine the
> SID
> of domain users, but not Global Groups.
>
> I've also had a look at getsid, newsid, showacls, and a few other utils
> that
> I can't remember. None of which seem to help me.
>
> To pre-empt the question: I need the group SID to add to a custom security
> descriptor to enable finer control over access to event logs. Unless,
> someone
> knows of a way to change the access permissions to the event logs on a
> W2k3
> server in an NT4 domain other than described in
> http://support.microsoft.com/default.aspx?scid=kb;en-us;323076
>
> Cheers,
>
> Scott
>
.
- Follow-Ups:
- Re: How to determine the SID of a Global Group
- From: Scott Holman
- Re: How to determine the SID of a Global Group
- Prev by Date: Re: Moving server to new hardware help please?
- Next by Date: Re: Minimum bandwidth for a 3 person remote office
- Previous by thread: help,add network driver to win setup cd?
- Next by thread: Re: How to determine the SID of a Global Group
- Index(es):
Relevant Pages
|
Loading
