Searchig for Unknown SIDs on Files and Folders ACLs

  • Thread starter Thread starter Gill Bates
  • Start date Start date
G

Gill Bates

Searchig for Unknown SIDs on Files and Folders ACLs

There is script (BAT, i prefer) to search in a disk, for ACLs contaning
unknown SIDs (deleted users or groups)?

Sometimes i found in customers, various unknown SIDs in ACLs, and search and
delete them is very time-consuming.
 
Gill said:
Searchig for Unknown SIDs on Files and Folders ACLs

There is script (BAT, i prefer) to search in a disk, for ACLs contaning
unknown SIDs (deleted users or groups)?

Sometimes i found in customers, various unknown SIDs in ACLs, and search and
delete them is very time-consuming.
Have a look at subinacl and its cleandeletedsids action.

http://www.microsoft.com/downloads/...56-d8fe-4a91-93cf-ed6985e3927b&displaylang=en
http://download.microsoft.com/download/1/7/d/17d82b72-bc6a-4dc8-bfaa-98b37b22b367/subinacl.msi


C:\>subinacl /help /cleandeletedsids
SubInAcl version 5.2.3790.1180

/CLEANDELETEDSIDSFROM
---------------------

/cleandeletedsidsfrom=domain[=dacl|sacl|owner|primarygroup|all]

delete all ACEs containing deleted (no valid) Sids from DomainName
You can specify which part of the security descriptor will be scanned
(default=all)
If the owner is deleted, new owner will be the Administrators group.
If the primary group is deleted, new primary group will be the Users group.

HTH
 
Back
Top