Foreign Security principal

  • Thread starter Thread starter Bob
  • Start date Start date
B

Bob

I just started at a company so I have no history of their
domains. I have noticed that there are a number of
external trusts and have tracked these down to NT 4
Domains. My predesessor set up external trusts to these
domains as would be expected. However, in the foreign
security principal OU I have, as I would expect only
object SIDs. My boss wants me to determine where these
foreign security principals came from. Does anyone know
how and if this can be done?
 
If you look at the container through ADUC it will resolve any of them that it
knows how to resolve (i.e. trusts are still in place and accounts still exist).

You can also write a script that will dump the sids to a file and then loop
through them and try to resolve them, there is a free tool on my website called
sidtoname that will convert sids to names if the sid is resolvable.
 
If you look at the container through ADUC it will resolve any of them that it
knows how to resolve (i.e. trusts are still in place and accounts still exist).

You can also write a script that will dump the sids to a file and then loop
through them and try to resolve them, there is a free tool on my website called
sidtoname that will convert sids to names if the sid is resolvable.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Unknown Foreign Security Principles 1
user pricipal names 1
SID filtering confusion?? 1
Client Certificate Principal Name Specifications? 0
Multi forest and Citrix farm 1
Win2000 + NT 4 trust - domain not available? 2
Binding to ADAM from LDP 3
Problem with creating Foreign Security Principals Objects 0

Back
Top