Well-known SID's
The following table of well known SID's only apply when using Windows 2003 Server as PDC
SID | Name | Description |
---|---|---|
S-1-1-0 | Everyone | A group that includes all users, even anonymous users, and guests. Membership is controlled by the operating system. |
S-1-5-4 | Interactive | A group that includes all users that have logged on interactively. Membership is controlled by the operating system |
S-1-5-11 | Authenticated Users | A group that includes all users whose identities were authenticated when they logged on. Membership is controlled by the operating system. |
S-1-5-domain-500 | Administrator | A user account for the system administrator. By default, it is the only user account that is given full control over the system. |
S-1-5-domain-512 | Domain Admins | A global group whose members are authorized to administer the domain. By default, the Domain Admins group is a member of the Administrators group on all computers that have joined a domain, including the domain controllers. Domain Admins is the default owner of any object that is created by any member of the group. |
S-1-5-domain-513 | Domain Users | A global group that, by default, includes all user accounts in a domain. When you create a user account in a domain, it is added to this group by default. |
S-1-5-32-544 | Administrators | A built-in group. After the initial installation of the operating system, the only member of the group is the Administrator account. When a computer joins a domain, the Domain Admins group is added to the Administrators group. When a server becomes a domain controller, the Enterprise Admins group also is added to the Administrators group. |
S-1-5-32-545 | Users | A built-in group. After the initial installation of the operating system, the only member is the Authenticated Users group. When a computer joins a domain, the Domain Users group is added to the Users group on the computer. |
Important note:
With the release of Windows 2008, some of the above SID's has been changed.
If you are using Windows 2008 (or later) please refer to the online documentation from Microsoft in order to validate that it is the correct SID's that are being implemented in the CapaInstaller Scripting Library functions.
The above information is from Article ID 243330 on Microsoft.com
More information about Well-known security identifiers in Windows operating systems can be found here. The link is a reference to Article ID 243330.