• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 350
  • Last Modified:

Currupt User Assignment

In user Group policy - rights assignments I have a entry starting with “*S-1-5-21-9918795-2052802652” as a local security setting/Log on as a service  and I thought I read somewhere that could be a corrupt record or user. Can someone tell me if that is the case please?
0
rjackmanwyn
Asked:
rjackmanwyn
  • 3
  • 2
2 Solutions
 
smangognaCommented:
Usually if you remove the user ho sould have that right, you'll see  those kind of entry

Sergio
0
 
rjackmanwynAuthor Commented:
So If I deleted a user from Active Directory it doesn't remove them from rights assignments?
0
 
smangognaCommented:
I am not sure if it happens everytime or if you have to wait fo sincronization, but I have seen it very often
0
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

 
rjackmanwynAuthor Commented:
OK one last question. Is it safe to revome this user entry?
0
 
arnoldCommented:
Yes, it is safe to remove the entry.
The information stored/referenced are SIDs which is in the format you have when viewing data those entries are looked up and converted to the username, groupname, etc. When the account is deleted, you will only see the references.

This means that you have assigned the GPO to the specific user versus assigning to a group of which this user was a member.

At times using groups to which you add users is better than assigning individual users to GPOs.
0
 
rjackmanwynAuthor Commented:
Thanks to both of you for your help
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now