![]() ![]() ![]() SIDs are useful for troubleshooting issues with security audits, Windows server and domain migrations. When a user requests access to a resource, the access token is checked against the ACL to permit or deny particular action on a particular object. When a user logs into a computer, an access token is generated that contains user and group SIDs and user privilege level. Windows grants or denies access and privileges to resources based on access control lists (ACLs), which use SIDs to uniquely identify users and their group memberships. ![]() This design allows a principal to be renamed (for example, from "Jane Smith" to "Jane Jones") without affecting the security attributes of objects that refer to the principal. A security principal has a single SID for life (in a given domain), and all properties of the principal, including its name, are associated with the SID. In the context of the Microsoft Windows NT line of operating systems, a Security Identifier (commonly abbreviated SID) is a unique, immutable identifier of a user, user group, or other security principal. Identifier used for user accounts and groups in Microsoft Windows ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |