Currupt User Assignment

In user Group policy - rights assignments I have a entry starting with “*S-1-5-21-9918795-2052802652” as a local security setting/Log on as a service  and I thought I read somewhere that could be a corrupt record or user. Can someone tell me if that is the case please?
Who is Participating?
smangognaConnect With a Mentor Commented:
Usually if you remove the user ho sould have that right, you'll see  those kind of entry

rjackmanwynAuthor Commented:
So If I deleted a user from Active Directory it doesn't remove them from rights assignments?
I am not sure if it happens everytime or if you have to wait fo sincronization, but I have seen it very often
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

rjackmanwynAuthor Commented:
OK one last question. Is it safe to revome this user entry?
arnoldConnect With a Mentor Commented:
Yes, it is safe to remove the entry.
The information stored/referenced are SIDs which is in the format you have when viewing data those entries are looked up and converted to the username, groupname, etc. When the account is deleted, you will only see the references.

This means that you have assigned the GPO to the specific user versus assigning to a group of which this user was a member.

At times using groups to which you add users is better than assigning individual users to GPOs.
rjackmanwynAuthor Commented:
Thanks to both of you for your help
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.