• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 614
  • Last Modified:

No mapping between account names and security IDs was done.

OS: Windows Server 2003

We recently migrated a company we aquired onto our network.

So they were on a differnt domain previously. We joined their servers to our domain, and since have been seeing the eventvwr fill up with these errors;

Security policies were propagated with warning. 0x534 : No mapping between account names and security IDs was done.

When you go through it, note that I did Step 1 and the usernames that were listed were "it." and "it infra." over and over again on all servers except the DC.  DC showed on "Ad.".

When we run;

C:\>FIND /I "Cannot find"  %SYSTEMROOT%\Security\Logs\winlogon.log

        Cannot find Ad.
        Cannot find it.
        Cannot find it infra.

Im wondering where these came from? Would this have to have been accounts on the previous domain perhaps? As we dont have these on our domain, the domain that we migrated them onto...

Thanks in advance.
1 Solution
Vipin VasudevanCommented:
There will be some group policies applied to these computers with these accounts are keyed in some where....

You can do a RSOP.MSC to this computer and check on Comp Policy > Windows Settings > Sec Settings > Local policies > User right assingment or on restricted groups...

please check ...

Featured Post


Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now