Link to home
Start Free TrialLog in
Avatar of maharlika
maharlika

asked on

Unknown Active Directory members

When I query Windows 2003 Server Active Directory on our domain controller, there are members that I didn't add and that aren't in the built-in groups.  They have  a red curved arrow pointing upwards next to them:  Terminal Server User, Network, System, This Organization, etc. Where do these accounts come from?  What does the red arrow indicate?
Avatar of Toni Uranjek
Toni Uranjek
Flag of Slovenia image
Hi!

These are built in accounts or special groups. They are part of your domain by default.
On the other hand red arrow might indicate that group is from another (I believe trusted ) domain.

HTH

Toni
Avatar of merowinger
merowinger
Flag of Germany image
i think that red arrow means, that the account is disabled!
Right click one account and check if u can click "Enable"

When they are Disabled...they cannot be getting dangerous or something else....but normally that are groups getting created from other software...like citrix...
Avatar of MSE-dwells
MSE-dwells
Flag of Yemen image
The 'shortcut'-style icon indicates that it's a foreign-security-principal (FSP).  These well-known groups are added on-demand when the Active Directory database determines a need for them to exist outside of purely code ... for example, when a well-known group is added to a regular group, an FSP is created (the well-known group 'Everyone' is but one example and is quite often represented within the database by an FSP).

This is normal behavior.
ASKER CERTIFIED SOLUTION
Avatar of MSE-dwells
MSE-dwells
Flag of Yemen image
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial