Did this break apps for all users, or only for users that were migrated to
this domain (Or a machine that was migrated)? This sounds like some type of
a sidHistory issue and the Authenticaetd Users within the FSP was for the
migrated users or a workstation/server that holds the data.
--
Paul Bergson
MVP - Directory Services
MCITP - Enterprise Administrator
MCTS, MCT, MCSE, MCSA, MCP, Security +, BS CSci
2008, Vista, 2003, 2000 (Early Achiever), NT4
Microsoft's Thrive IT Pro of the Month - June 2009
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewGroups. This
posting is provided "AS IS" with no warranties and confers no rights.
"TPGBrennan" <> wrote in message
news:731F8C98-3CAB-468D-A91C-...
> The documentation I can find shows that Authenticated Users should reside
> in
> the cn=WellKnown Security Principals, cn=Configuration,
> dc=<forestRootDomain.
> However, there is also an object named Authenticated Users in the
> ForeignSecurityPrincipals containers. Because the documentation stated
> the
> important Authenticated Users was in the WellKnown Security Principals
> container we deleted everything int he ForeignSecurityPrincipal container;
> at
> one time we had external trusts to two other domains and had more than
> 80,000
> FSPs, those trusts are now long gone so we wanted to clean up AD. This
> broke
> several apps and proved the Authenticated Users in the
> ForeignSecurityPrincipals container was THE Authenticated Users object.
> Is
> there any documentation explaining the relationship between these two
> containers?
Similar Threads
Linear Mode
