Unknown Active Directory members

Posted on 2007-08-06
Last Modified: 2009-05-06
When I query Windows 2003 Server Active Directory on our domain controller, there are members that I didn't add and that aren't in the built-in groups.  They have  a red curved arrow pointing upwards next to them:  Terminal Server User, Network, System, This Organization, etc. Where do these accounts come from?  What does the red arrow indicate?
Question by:maharlika
    LVL 31

    Expert Comment

    by:Toni Uranjek

    These are built in accounts or special groups. They are part of your domain by default.
    On the other hand red arrow might indicate that group is from another (I believe trusted ) domain.


    LVL 31

    Expert Comment

    i think that red arrow means, that the account is disabled!
    Right click one account and check if u can click "Enable"

    When they are Disabled...they cannot be getting dangerous or something else....but normally that are groups getting created from other citrix...
    LVL 9

    Expert Comment

    The 'shortcut'-style icon indicates that it's a foreign-security-principal (FSP).  These well-known groups are added on-demand when the Active Directory database determines a need for them to exist outside of purely code ... for example, when a well-known group is added to a regular group, an FSP is created (the well-known group 'Everyone' is but one example and is quite often represented within the database by an FSP).

    This is normal behavior.
    LVL 9

    Accepted Solution

    ... FWIW and if you're able to access the site, I wrote a series of articles on this topic, it's available here -,289142,sid1_gci1195097,00.html

    ... if you can't read that -- sadly, there's no really short answer to describe their entire purpose in life but, in addition to what I've already mentioned, they also serve to represent security-principals from trusted domains (but only those tusted domains whose security-principals CANNOT be resolved against a forest-local GC -- i.e. across external trusts, forest trusts or realm trusts).

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Highfive Gives IT Their Time Back

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Suggested Solutions

    Finding a job can be stressful - searches, resume tweaks, and networking events can be super boring. Luckily we're here to help you land your dream job!
    If you want to move up through the ranks in your technology career, talent and hard work are the bare necessities. But they aren’t enough to make you stand out. Expanding your skills, actively promoting your accomplishments and using promotion st…
    Where to go on the main page to find the job listings. How to apply to a job that you are interested in from the list that is featured on our Careers page.
    Introduction to GIMP:  GNU Image Manipulation Program. It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    11 Experts available now in Live!

    Get 1:1 Help Now