| CN | SAM Name | Member of groups | description | Created on | Changed on | SID |
|---|
| Shared Support Accounts | Shared Support Accounts | | | 05/28/22 11:11:32 | 05/28/22 11:12:04 | 1103 |
| DnsUpdateProxy | DnsUpdateProxy | | DNS clients who are permitted to perform dynamic updates on behalf of some other clients (such as DHCP servers). | 05/28/22 11:05:17 | 05/28/22 11:05:17 | 1102 |
| DnsAdmins | DnsAdmins | | DNS Administrators Group | 05/28/22 11:05:17 | 05/28/22 11:05:17 | 1101 |
| Enterprise Key Admins | Enterprise Key Admins | | Members of this group can perform administrative actions on key objects within the forest. | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 527 |
| Key Admins | Key Admins | | Members of this group can perform administrative actions on key objects within the domain. | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 526 |
| Protected Users | Protected Users | | Members of this group are afforded additional protections against authentication security threats. See http://go.microsoft.com/fwlink/?LinkId=298939 for more information. | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 525 |
| Cloneable Domain Controllers | Cloneable Domain Controllers | | Members of this group that are domain controllers may be cloned. | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 522 |
| Enterprise Read-only Domain Controllers | Enterprise Read-only Domain Controllers | | Members of this group are Read-Only Domain Controllers in the enterprise | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 498 |
| Read-only Domain Controllers | Read-only Domain Controllers | Denied RODC Password Replication Group | Members of this group are Read-Only Domain Controllers in the domain | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 521 |
| Denied RODC Password Replication Group | Denied RODC Password Replication Group | | Members in this group cannot have their passwords replicated to any read-only domain controllers in the domain | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 572 |
| Allowed RODC Password Replication Group | Allowed RODC Password Replication Group | | Members in this group can have their passwords replicated to all read-only domain controllers in the domain | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 571 |
| Terminal Server License Servers | Terminal Server License Servers | | Members of this group can update user accounts in Active Directory with information about license issuance, for the purpose of tracking and reporting TS Per User CAL usage | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 561 |
| Windows Authorization Access Group | Windows Authorization Access Group | | Members of this group have access to the computed tokenGroupsGlobalAndUniversal attribute on User objects | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 560 |
| Incoming Forest Trust Builders | Incoming Forest Trust Builders | | Members of this group can create incoming, one-way trusts to this forest | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 557 |
| Pre-Windows 2000 Compatible Access | Pre-Windows 2000 Compatible Access | | A backward compatibility group which allows read access on all users and groups in the domain | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 554 |
| Account Operators | Account Operators | | Members can administer domain user and group accounts | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 548 |
| Server Operators | Server Operators | | Members can administer domain servers | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 549 |
| RAS and IAS Servers | RAS and IAS Servers | | Servers in this group can access remote access properties of users | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 553 |
| Group Policy Creator Owners | Group Policy Creator Owners | Denied RODC Password Replication Group | Members in this group can modify group policy for the domain | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 520 |
| Domain Guests | Domain Guests | Guests | All domain guests | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 514 |
| Domain Users | Domain Users | Users | All domain users | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 513 |
| Domain Admins | Domain Admins | Denied RODC Password Replication Group, Administrators | Designated administrators of the domain | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 512 |
| Cert Publishers | Cert Publishers | Denied RODC Password Replication Group | Members of this group are permitted to publish certificates to the directory | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 517 |
| Enterprise Admins | Enterprise Admins | Denied RODC Password Replication Group, Administrators | Designated administrators of the enterprise | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 519 |
| Schema Admins | Schema Admins | Denied RODC Password Replication Group | Designated administrators of the schema | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 518 |
| Domain Controllers | Domain Controllers | Denied RODC Password Replication Group | All domain controllers in the domain | 05/28/22 11:03:43 | 05/28/22 11:19:47 | 516 |
| Domain Computers | Domain Computers | | All workstations and servers joined to the domain | 05/28/22 11:03:43 | 05/28/22 11:03:43 | 515 |
| Storage Replica Administrators | Storage Replica Administrators | | Members of this group have complete and unrestricted access to all features of Storage Replica. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 582 |
| Remote Management Users | Remote Management Users | | Members of this group can access WMI resources over management protocols (such as WS-Management via the Windows Remote Management service). This applies only to WMI namespaces that grant access to the user. | 05/28/22 11:01:56 | 05/28/22 11:12:04 | 580 |
| Access Control Assistance Operators | Access Control Assistance Operators | | Members of this group can remotely query authorization attributes and permissions for resources on this computer. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 579 |
| Hyper-V Administrators | Hyper-V Administrators | | Members of this group have complete and unrestricted access to all features of Hyper-V. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 578 |
| RDS Management Servers | RDS Management Servers | | Servers in this group can perform routine administrative actions on servers running Remote Desktop Services. This group needs to be populated on all servers in a Remote Desktop Services deployment. The servers running the RDS Central Management service must be included in this group. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 577 |
| RDS Endpoint Servers | RDS Endpoint Servers | | Servers in this group run virtual machines and host sessions where users RemoteApp programs and personal virtual desktops run. This group needs to be populated on servers running RD Connection Broker. RD Session Host servers and RD Virtualization Host servers used in the deployment need to be in this group. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 576 |
| RDS Remote Access Servers | RDS Remote Access Servers | | Servers in this group enable users of RemoteApp programs and personal virtual desktops access to these resources. In Internet-facing deployments, these servers are typically deployed in an edge network. This group needs to be populated on servers running RD Connection Broker. RD Gateway servers and RD Web Access servers used in the deployment need to be in this group. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 575 |
| Certificate Service DCOM Access | Certificate Service DCOM Access | | Members of this group are allowed to connect to Certification Authorities in the enterprise | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 574 |
| Event Log Readers | Event Log Readers | | Members of this group can read event logs from local machine | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 573 |
| Cryptographic Operators | Cryptographic Operators | | Members are authorized to perform cryptographic operations. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 569 |
| IIS_IUSRS | IIS_IUSRS | | Built-in group used by Internet Information Services. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 568 |
| Distributed COM Users | Distributed COM Users | | Members are allowed to launch, activate and use Distributed COM objects on this machine. | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 562 |
| Performance Log Users | Performance Log Users | | Members of this group may schedule logging of performance counters, enable trace providers, and collect event traces both locally and via remote access to this computer | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 559 |
| Performance Monitor Users | Performance Monitor Users | | Members of this group can access performance counter data locally and remotely | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 558 |
| Network Configuration Operators | Network Configuration Operators | | Members in this group can have some administrative privileges to manage configuration of networking features | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 556 |
| Remote Desktop Users | Remote Desktop Users | | Members in this group are granted the right to logon remotely | 05/28/22 11:01:56 | 05/28/22 11:01:56 | 555 |
| Replicator | Replicator | | Supports file replication in a domain | 05/28/22 11:01:56 | 05/28/22 11:19:47 | 552 |
| Backup Operators | Backup Operators | | Backup Operators can override security restrictions for the sole purpose of backing up or restoring files | 05/28/22 11:01:56 | 05/28/22 11:19:47 | 551 |
| Print Operators | Print Operators | | Members can administer printers installed on domain controllers | 05/28/22 11:01:56 | 05/28/22 11:19:47 | 550 |
| Guests | Guests | | Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted | 05/28/22 11:01:56 | 05/28/22 11:03:43 | 546 |
| Users | Users | | Users are prevented from making accidental or intentional system-wide changes and can run most applications | 05/28/22 11:01:56 | 05/28/22 11:03:43 | 545 |
| Administrators | Administrators | | Administrators have complete and unrestricted access to the computer/domain | 05/28/22 11:01:56 | 05/28/22 11:19:47 | 544 |