Security principals and SIDs underlie so much of Windows security that as an administrator, you must have at least a basic understanding of how they work. SIDs are the fundamental building blocks of a token, which, in turn, is the basic entity used to check whether access is permitted. Understanding how these components function together and being able to assign permissions effectively using users, groups, domain groups, and the log-on types will enable you to be far more effective, and encounter far less surprises, as you delve deeper into Windows Security.

Get Windows Server® 2008 Security Resource Kit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.