On Mon, Mar 31, 2003 at 01:56:45PM +0200, Michael Steffens wrote: > the attached enhancements of SID related debug messages were quite > useful for me for tracking down where "strange" SIDs winbindd > complained about are coming from. > > Being there I found that my suspicous SIDs are included in the > user token from DC on domain client validation, in the "other > sids" section. Is this the place where W2k SID history lives?
I'm not sure where the SID history lives. As far as I can work out the other SIDs section seems to be where membership of universal groups from trusted domains is contained. Tim.