<div>
It looks like you may be able to do this: &nbsp;<a href="https://alwinperotti.wordpress.com/2013/03/29/update-the-sidhistory-attribute-for-existing-accounts-with-powershell/" rel="ugc">https://alwinperotti.wordpress.com/2013/03/29/update-the-sidhistory-attribute-for-existing-accounts-with-powershell/</a> &nbsp;Provided the trust is still there. &nbsp;Never Tried it.<br />
<br />
I think you are looking for a backout plan. &nbsp; As oBdA mentioned, you can save it so you can cross reference the old SID incase there was some old SIDs that didn't get migrated.<br />
<br />
Probably best idea would be to remove the trust for a period of time and see what breaks. &nbsp;If issues arise, you can re-establish the trust quickly to get going again. &nbsp;Or fix the security using the new SIDs. &nbsp;If you can run with the trust removed for an extended period of time, you can be confident with removing the sIDHistory.
</div>


It looks like you may be able to do this:  https://alwinperotti.wordpress.com/2013/03/29/update-the-sidhistory-attribute-for-existing-accounts-with-powershell/ [https://alwinperotti.wordpress.com/2013/03/29/update-the-sidhistory-attribute-for-existing-accounts-with-powershell/]  Provided the trust is still there.  Never Tried it.

I think you are looking for a backout plan.   As oBdA mentioned, you can save it so you can cross reference the old SID incase there was some old SIDs that didn't get migrated.

Probably best idea would be to remove the trust for a period of time and see what breaks.  If issues arise, you can re-establish the trust quickly to get going again.  Or fix the security using the new SIDs.  If you can run with the trust removed for an extended period of time, you can be confident with removing the sIDHistory.

<div>
I think this deserves a split.
</div>


<div>
<div class="content wysiwyg-content">
Hello experts,<br />
<br />
Is there a way to save the sidHistory attribute values prior to removing it for a user/group and restore these if there is an issue with a script.<br />
<br />
Looking forward to you assistance.<br />
<br />
Thanks.
</div>
</div>


Hello experts,

Is there a way to save the sidHistory attribute values prior to removing it for a user/group and restore these if there is an issue with a script.

Looking forward to you assistance.

Thanks.

Powershell: sidhistory

Windows PowerShell is a task automation and configuration management framework from Microsoft, consisting of a command-line shell and associated scripting language built on the .NET Framework. PowerShell provides full access to the Component Object Model (COM) and Windows Management Instrumentation (WMI), enabling administrators to perform administrative tasks on both local and remote Windows systems as well as WS-Management and Common Information Model (CIM) enabling management of remote Linux systems and network devices.

Powershell

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.