Regarding Security unique identifiers,
Lets say for example you are examining who can "logon as a service" through the Default domain controllers policy....You see account names listed, and then you only see SID's like *S-1-5-21...........1165..which represents an administrator account somewhere. I need to find out the user ID for that SID...do I have to logon to every server and check the registry to find who is logging in as a service ????