I'm sure this isn't a big deal to the experts out there, but it is a huge deal to me since I'm not sure how to proceed without messing up my entire network.
Im having permissions issues with a 2003 Server where the entries on the Members tab are different than those on the Security tab. In the beginning this was an NT 4.0 network, and then a Windows 2000 Server domain before it was upgraded to a Windows 2003 domain 5 years or so ago.
For some reason there seems to be some remnants of the W2K domain intertwined in our network. For example purposes Im going to exclude the exact name of the domain, so lets assume it was called company_nt when we had a Windows 2000 Server environment and it was changed to company.com when we went to a Windows 2003 Server environment.
As an example the Builtin Group called Administrators has the following entries:
Dave W domain_name.com/Users
Domain Admins domain_name.com/Users
Enterprise Admin domain_name.com/Users
John R domain_name.com/Users
Keith B domain_name.com/Users
Lynn Z domain_name.com/Users
Member Of tab:
This tab is empty
Cert Publishers (domain_nt\Cert Publishers)
Domain Admins (domain_nt\Domain Admins)
Enterprise Admins (domain_nt\Enterprise Admins)
Exchange Enterprise Servers (domain_nt\Exchange Enterprise Servers)
Pre-Windows 2000 Compatible Access (domain_nt\Pre-Windows 2000 Compatible Access)
Terminal Server License Servers (domain_nt\Terminal Server License Servers)
Windows Authorization Access Group (domain_nt\Windows Authorization Access Group)
So my question is this: what needs to be there, and what can I get rid of? How do I determine what is necessary and what has been added due to lack of knowledge or understanding?
Im sure this sounds very convoluted to please ask me for clarification and Ill do the best that I can.
Thank you very much for any assistance you are able to provide.