Solved

Currupt User Assignment

Posted on 2011-02-24
6
318 Views
Last Modified: 2012-05-11
In user Group policy - rights assignments I have a entry starting with “*S-1-5-21-9918795-2052802652” as a local security setting/Log on as a service  and I thought I read somewhere that could be a corrupt record or user. Can someone tell me if that is the case please?
0
Comment
Question by:rjackmanwyn
  • 3
  • 2
6 Comments
 
LVL 5

Accepted Solution

by:
smangogna earned 250 total points
Comment Utility
Usually if you remove the user ho sould have that right, you'll see  those kind of entry

Sergio
0
 

Author Comment

by:rjackmanwyn
Comment Utility
So If I deleted a user from Active Directory it doesn't remove them from rights assignments?
0
 
LVL 5

Expert Comment

by:smangogna
Comment Utility
I am not sure if it happens everytime or if you have to wait fo sincronization, but I have seen it very often
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:rjackmanwyn
Comment Utility
OK one last question. Is it safe to revome this user entry?
0
 
LVL 76

Assisted Solution

by:arnold
arnold earned 250 total points
Comment Utility
Yes, it is safe to remove the entry.
The information stored/referenced are SIDs which is in the format you have when viewing data those entries are looked up and converted to the username, groupname, etc. When the account is deleted, you will only see the references.

This means that you have assigned the GPO to the specific user versus assigning to a group of which this user was a member.

At times using groups to which you add users is better than assigning individual users to GPOs.
0
 

Author Closing Comment

by:rjackmanwyn
Comment Utility
Thanks to both of you for your help
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Disabling the Directory Sync Service Account in Office 365 will stop directory synchronization from working.
In this video, we discuss why the need for additional vertical screen space has become more important in recent years, namely, due to the transition in the marketplace of 4x3 computer screens to 16x9 and 16x10 screens (so-called widescreen format). …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now