Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
U
U
Uncle Seryozha2016-04-22 13:07:05
Active Directory
Uncle Seryozha, 2016-04-22 13:07:05

Active directory should I remove ssid when deleting a group?

After deleting the group, there are rights that remained and hung, should they be deleted from the point of view of information security?
f08ed5f694eb441ba67420f2c3f750c9.jpg

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
E
Ethril, 2016-04-22
@Ethril

As already mentioned, it is better not to remove users and groups from AD, but to block and store them in a special OU. Just to avoid such problems.
If you want to bulk clean ACLs of unresolved SIDs, you can do this with subinacl /cleandeletedsidsfrom . Theoretically, it should speed up access.

Similar questions
F
flashnik2014-08-08 14:14:47
Is it possible to use OAuth to login to a domain? 0Reply
T
theNorthWind2020-11-01 15:44:58
Is there something like Active Directory for Windows 10? 3Reply
S
szavorotkov2019-01-25 13:10:54
The computer is a member of the following security groups - Not applicable. Who had this error? 1Reply
B
Bol9702014-09-02 11:25:09
How to give anonymous access to a domain folder? 1Reply
A
Artem GS2016-09-19 11:41:04
How to synchronize user profiles in Sharepoint 2013 with Active Directory? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question