Usually not, but you may have some scripts (logon-script:
ifmember) or 3rd party code which relies on the name. You should also make
sure that you translate them in the GPOs, otherwise you might get weired
issues.
Access is usually based on SIDs - during logon the token of the user is
created which lists all of his SIDs and groups belonging to (generally - there
are exceptions such as lokal groups). When accessing a ressource the
ntsecuritydescriptor of the ressource is compared against the users token, and
based on the SIDs listed in both access is granted or
denied.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
Profile
& Publications: http://mvp.support.microsoft.com/profile="">
Weblog: http://msmvps.org/UlfBSimonWeidner
Website: http://www.windowsserverfaq.org
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Teo De Las Heras
Sent: Monday, May 15, 2006 2:42 PM
To: [email protected]
Subject: [ActiveDir] Group Name (Pre-Win2k) - Is it importantWe're making changes to group names in Active Directory. Is it important to keep the Pre-Win2k names the same?Teo
