FAQ : IDEAL Administration

Gestione semplificata per domini di Windows Active Directory e gruppi di lavoro da un'unica console

Cerca Guida  

FAQ

By using this search engine, you can search one or more terms in the complete Pointdev FAQ.

  • In order to look for one or more keywords, type them in the search field using space to separate them.

    ex : remote control

    This search will show you every FAQ containing the word "remote" OR "control".

  • In order to look for a full sentence, use the quotes " " around your keywords
  • ex : "remote control"

    This search will show you every FAQ containing the whole word "remote control".
 Titolo e contenuto
 Solo titolo

Windows Active Directory object and security (ACL) migration

How to enable/disable filtering for SIDHistory management?

I migrated the group and user SID, however, users can not access to their resources. They have a "Access denied" error message.

What's happen?


Try IDEAL Administration during 30 days on your network for free!

Manage SIDHistory (Reporting and Cleaning Functions) with IDEAL Administration

 

Enabling/disabling filtering mode for SIDHistory management

When you establish an approval relationship between two Active Directory domains, SIDHistory management is deactivated by default.

In this case, users do not have access to the data in the approved domain, and the same is true if the SIDHistories have been correctly migrated to the target domain.

You have the possibility of enabling or disabling the filtering mode by using the NETDOM command below.

Important: The commands are differents for a domain trust (/Quarantine:yes|no) and a forest trust (/EnableSIDHistory:yes|no).

  • Disabling filtering is equivalent to enabling SIDHistory management:

    • From the source domain (Domain Trust):

    NETDOM TRUST SOURCE_DOMAIN /Domain:APPROVED_DOMAIN /Quarantine:No

    From the source domain (Forest Trust):

    NETDOM TRUST SOURCE_DOMAIN /Domain:APPROVED_DOMAIN /EnableSIDHistory:yes

    From the destination domain (Domain Trust):

    NETDOM TRUST DESTINATION_DOMAIN /Domain:APPROVED_DOMAIN /Quarantine:No

    From the destination domain (Forest Trust):

    NETDOM TRUST DESTINATION_DOMAIN /Domain:APPROVED_DOMAIN /EnableSIDHistory:yes

  • Enabling filtering is equivalent to disabling SIDHistory management:

    • From the source domain (Domain Trust):

    NETDOM TRUST SOURCE_DOMAIN /Domain:APPROVED_DOMAIN /Quarantine:Yes

    From the source domain (Forest Trust):

    NETDOM TRUST SOURCE_DOMAIN /Domain:APPROVED_DOMAIN /EnableSIDHistory:no

    From the destination domain (Domain Trust):

    NETDOM TRUST DESTINATION_DOMAIN /Domain:APPROVED_DOMAIN/Quarantine:Yes

    From the destination domain (Forest Trust):

    NETDOM TRUST DESTINATION_DOMAIN /Domain:APPROVED_DOMAIN /EnableSIDHistory:no

     
    Riguarda anche il seguente software: IDEAL Migration
    Ultima modifica: 23/07/2020

    Precedente
        
    Successivo

    Torna alla lista

     



    FAQ : IDEAL Administration | IDEAL Dispatch | IDEAL Remote | IDEAL Migration



    IDEAL Administration 23.5
    SCARICA
    VERSIONE GRATUITA
    Torna in alto