Run this over the file system (from a computer in the new
domain). This can take hours depending on the volume size.
dir "I:\*." -recurse -directory | Get-Acl | select
-exp Access | select -exp IdentityReference -Unique
then see the output, the computer you run this from being in
the new domain, will resolve to the newdomainname\object because of SIDhistory,
if you see anything resolving to the old, either it does not exist in the new
domain or it does not have a SIDhistory.
Value
-----
BUILTIN\Administrators
CREATOR OWNER
NT AUTHORITY\SYSTEM
NewDomainName\TaneA
NewDomainName\AzafdpeyP
NewDomainName\daviydia
OldDomainName\chriestoc
NewDomainName\access_group
OldDomainName\priv_group
OldDomainName\johnwsonn
NewDomainName\devaered
No comments:
Post a Comment