How can I remove deleted user SIDs?

  • Thread starter Thread starter Gregg Hill
  • Start date Start date
G

Gregg Hill

Hello!

I have a Windows 2000 domain that I inherited. It has an Application Log
filled with "Security policies are propagated with warning. 0x534" errors
every five minutes. An hour of Googling shows the problem is likely due to
deleted user accounts still being linked to group policies.

I have many ghost accounts starting with *S-1-5-21, but I cannot find out
how to delete those accounts. They do not show up in AD Users/Computers, but
they show in NTFS permissions lists when checking file or folder properties.
How do I delete all of them?

Thank you for the help!

Gregg Hill
 
The accounts are already deleted, you need to go in and clean up the group
policies. I would recommend doing a google search on group policy
troubleshooting and you will find a wealth of information how to clean this up.

joe
 
Gregg-

Browse to c:\windows\security\logs on a problem machine and open up the
winlogon.log. The GPOs that are casuing the error will have the policies
listed in there, adn you can clean that up.

--
--
Brian Desmond
Windows Server MVP
(e-mail address removed)12.il.us

Http://www.briandesmond.com
 
Back
Top