?
Solved

Authenticated Users SID

Posted on 2008-09-29
6
Medium Priority
?
1,326 Views
Last Modified: 2012-05-05
We plan on removing a server from a 2000 domain and attaching it to another 2008 domain. I'm wondering how NTFS perm's are going to move. Obviously, specific users will be out the window... but what about built in accounts like Everyone and Authenticated Users?

Looking at this KB, I'd like to think that as long as the domain isn't part of the SID, I'll be okay.

http://support.microsoft.com/kb/243330

Example:
I think that this would transfer over okay:
SID: S-1-5-11 - Name: Authenticated Users

I think that this would NOT work:
SID: S-1-5-domain-513 - Name: Domain Users

Thoughts?
0
Comment
Question by:bkrontz
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
6 Comments
 
LVL 23

Accepted Solution

by:
bhanukir7 earned 2000 total points
ID: 22599186
Hi

The server in question is that a win2003 or a win 2000 server. Will you be removing the server from the domain and changing it to workgroup and then moving it backup to the new domain.


If that is the case then there should not be issues from the authenticated users and everyone as far as the defaults are concerned.

But if we are talking domain user folders and those permissions that are on the current server, they would become irrelavent.
 
bhanu
0
 
LVL 18

Expert Comment

by:Americom
ID: 22599190
They both should works if there's proper trust extablished. Otherwise you're correct.
0
 
LVL 1

Author Comment

by:bkrontz
ID: 22599226
There will be no trust. The File Server is 2003 running with AD 2000 functionality. It will be unjoined to a workgroup, then rejoined to the new domain.

So the consensus is that any group with the domain built into the SID will not function post domain migration?
0
What Is Blockchain Technology?

Blockchain is a technology that underpins the success of Bitcoin and other digital currencies, but it has uses far beyond finance. Learn how blockchain works and why it is proving disruptive to other areas of IT.

 
LVL 23

Expert Comment

by:bhanukir7
ID: 22599348
yes. as that SID is not value is not available in the new domain. And the SID is unique for each domain.

bhanu
0
 
LVL 1

Author Closing Comment

by:bkrontz
ID: 31501286
Thanks!!!!
0
 
LVL 18

Expert Comment

by:Americom
ID: 22599412
You may want to find way to record your permissions on files and folders if you want to retain them for future reference. You can either purchase 3rd party software that can run report of the permissions but may not be justified if this is a one time use. Or if you have a spare server, you may want to move data between servers depening on how well you have been managing shortcuts or mappings etc in your enviornment. Hope you don't have any file permission or folder granted to invividual user account....
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolving an irritating Remote Desktop connection that stops your saved credentials from being used.
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question