In order to logon and have the authenticated users SID in your token, you
have to demonstrate to Windows that you are who you say you are. That
distinguishes such a logon session from (say) an anonymous logon, where the
system doesn't really know who's on the other end of the line.
I'm not sure if that answers your question-- can you be more specific about
how you're using (or seeing) this identifier? For example, are you looking
at it in the user manager, or on an access control list, or in your
token...?
Thanks!
--
Dave Christiansen, Windows Core Security Testing
This message is provided "AS IS" with no warranties, and confers no rights.
This message originates in the State of Washington (USA), where unsolicited
commercial email is legally actionable (see
http://www.wa.gov/ago/junkemail).
Harvesting of this address for purposes of bulk email (including "spam") is
prohibited unless by my expressed prior request. I retaliate viciously
against spammers and spam sites.
