Click here to get back home

User ID is a bunch of numbers and the icon is greyed out with ?
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
User ID is a bunch of numbers and the icon is greyed out with ? Tim Sanders 02-06-2006
Posted by Tim Sanders on February 6, 2006, 10:26 pm
Please log in for more thread options
 WIn2k Server. Single Server in system. Using Active Directory. When I
click on Properties of a shared folder and click on Security, Some of the
User Names are there and some are replaced with a string of numbers and
letters. The Icon is greyed out and has a question mark. Some users cannot
access thier data in these folders. What is causing this and how do I fix it?


Posted by Roger Abell [MVP] on February 7, 2006, 1:19 am
Please log in for more thread options
 In a single server, single domain Active Directory this usually means that
the user or group no longer exists, hence the SID cannot be translated
to a display name. The same happens in a stand-alone. In a multi-server,
or multi-domain environment this can be a problem with trust connectivity.
Are you seeing any "custom" user or groups, by which I mean anything
other than well-know built-ins (like Administrator, Users, Authenticated
Users, etc.) being shown - I mean if there is a group named Finance or
a user Charlie, do you see any such that are defined post-install ??

> WIn2k Server. Single Server in system. Using Active Directory. When I
> click on Properties of a shared folder and click on Security, Some of the
> User Names are there and some are replaced with a string of numbers and
> letters. The Icon is greyed out and has a question mark. Some users
> cannot
> access thier data in these folders. What is causing this and how do I fix
> it?
>



Posted by Tim Sanders on February 7, 2006, 7:10 am
Please log in for more thread options
We have three custom groups in this directory. I am seeing one of them but
not the other two. Also, the customer has been messing around with it as
well. I'm not sure what he has done. If he deleted the groups and recreated
them, would this happen?

Thanks,

Tim Sanders


"Roger Abell [MVP]" wrote:

> In a single server, single domain Active Directory this usually means that
> the user or group no longer exists, hence the SID cannot be translated
> to a display name. The same happens in a stand-alone. In a multi-server,
> or multi-domain environment this can be a problem with trust connectivity.
> Are you seeing any "custom" user or groups, by which I mean anything
> other than well-know built-ins (like Administrator, Users, Authenticated
> Users, etc.) being shown - I mean if there is a group named Finance or
> a user Charlie, do you see any such that are defined post-install ??
>
> > WIn2k Server. Single Server in system. Using Active Directory. When I
> > click on Properties of a shared folder and click on Security, Some of the
> > User Names are there and some are replaced with a string of numbers and
> > letters. The Icon is greyed out and has a question mark. Some users
> > cannot
> > access thier data in these folders. What is causing this and how do I fix
> > it?
> >
>
>
>

Posted by Roger Abell [MVP] on February 7, 2006, 2:39 pm
Please log in for more thread options
Yes, that would be able to account for it.
A delete and redefine by same name results in new group with
different SID, but all grants are in terms of SIDs so they point to
old, no longer existing, group.

--
Roger Abell
Microsoft MVP (Windows Server : Security)

> We have three custom groups in this directory. I am seeing one of them
> but
> not the other two. Also, the customer has been messing around with it as
> well. I'm not sure what he has done. If he deleted the groups and
> recreated
> them, would this happen?
>
> Thanks,
>
> Tim Sanders
>
>
> "Roger Abell [MVP]" wrote:
>
>> In a single server, single domain Active Directory this usually means
>> that
>> the user or group no longer exists, hence the SID cannot be translated
>> to a display name. The same happens in a stand-alone. In a
>> multi-server,
>> or multi-domain environment this can be a problem with trust
>> connectivity.
>> Are you seeing any "custom" user or groups, by which I mean anything
>> other than well-know built-ins (like Administrator, Users, Authenticated
>> Users, etc.) being shown - I mean if there is a group named Finance or
>> a user Charlie, do you see any such that are defined post-install ??
>>
>> > WIn2k Server. Single Server in system. Using Active Directory. When
>> > I
>> > click on Properties of a shared folder and click on Security, Some of
>> > the
>> > User Names are there and some are replaced with a string of numbers and
>> > letters. The Icon is greyed out and has a question mark. Some users
>> > cannot
>> > access thier data in these folders. What is causing this and how do I
>> > fix
>> > it?
>> >
>>
>>
>>



Posted by TZanolo on February 7, 2006, 1:03 pm
Please log in for more thread options
If you delete and recreate this will happens...
These numbers are SID, they are unique. When you create a group or user, the
system add a Sid to the user or group...
The system only see and uses the SID, the system don`t care about real
names,the names existis just for convenience to users and administrators.
When you delete a user called John, and recreate it, the "new" John has a
new unique SID, so you must add him to yours shares permitions, for example.
This is a security question, because if only one user has acess to
something, no one can create a new user with the same name to gain acess
again....



> WIn2k Server. Single Server in system. Using Active Directory. When I
> click on Properties of a shared folder and click on Security, Some of the
> User Names are there and some are replaced with a string of numbers and
> letters. The Icon is greyed out and has a question mark. Some users
> cannot
> access thier data in these folders. What is causing this and how do I fix
> it?
>



Similar ThreadsPosted
"Preparing to Install" Dialog Pops Up on Every Desktop Application Icon October 15, 2005, 2:40 pm
How Do Release Numbers and Service Packs Relate? May 9, 2007, 8:55 pm
Unexpected security restriction for a user in both a user and administrative group. April 24, 2008, 10:05 pm
SBS new user wizard -v- manual user setup June 7, 2006, 10:19 pm
User Account Created - 624 And User Account Enabled - 626 for Hel October 13, 2005, 1:56 pm
Is it possible to use the Windows 2003 user names instead of pre-Windows 2000 user names in Windows Authentication? September 5, 2006, 9:27 am
Get FTP user name October 25, 2006, 4:46 am
new user with different privileges June 27, 2005, 7:02 am
user rights August 15, 2005, 10:13 am
Hidden user August 29, 2005, 10:56 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap