Security principals and SIDs underlie so much of Windows security that as an administrator, you must have at least a basic understanding of how they work. SIDs are the fundamental building blocks of a token, which, in turn, is the basic entity used to check whether access is permitted. Understanding how these components function together and being able to assign permissions effectively using users, groups, domain groups, and the log-on types will enable you to be far more effective, and encounter far less surprises, as you delve deeper into Windows Security.

Get Windows Server® 2008 Security Resource Kit now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.