Albert said:
If I log onto a Windows 2000 domain with a valid user name and password on
the domain and the sid is created and then change the computer name and have
an other user log on to that system, will there be two sids created?
Thanks
Albert, you are essentially correct, but perhaps a small clarification
would be helpful. To oversimplify, each SAM has a SID. Remember that a
domain all shares one SAM (the one on the PDC). Then, each user created
in that domain gets appeneded to the domain SID to create th unique
domain-user SID. Therefore, as long as the domain doesn't change, no
matter where a user logs in to, or how many times, or if the profile
gets corrupt and a new one is created, or if the workstation changes
names...no matter what, his/her unique domain SID will always be the
same.
Keep in mind, however, that each workstation (as well as stand alone
servers and member servers...essentially, any non-DC machine) sort of
functions like it's own domain as well. Each machine's local SAM is
where you create the local users and groups. The sysprep tool the other
poster was referring to was for cloning non-DC machines to make sure
that each one has a unique machine SID for its SAM. That way, when
users are created on that local machine, it is guaranteed to be unique
in the domain since it's machine SID will be different than every other
machine SID in the network.
hth
