Get Sid Script not working

trgrassijr · October 29, 2019, 7:28pm

Windows 2012 AD

Trying to find the Account for the SID

$SID = ‘S-1-5-21-3054588571-1341459584-784128302-1110’
$objSID = New-Object System.Security.Principal.SecurityIdentifier($SID)
$objUser = $objSID.Translate([System.Security.Principal.NTAccount])
Write-Host "Resolved user name: " $objUser.Value

PS C:\util> $SID = ‘S-1-5-21-3054588571-1341459584-784128302-1110’
PS C:\util> $sid
S-1-5-21-3054588571-1341459584-784128302-1110
PS C:\util> $objSID = New-Object System.Security.Principal.SecurityIdentifier($SID)
PS C:\util> $objUser = $objSID.Translate([System.Security.Principal.NTAccount])
Exception calling “Translate” with “1” argument(s): “Some or all identity references could not be translated.”
At line:1 char:1

$objUser = $objSID.Translate([System.Security.Principal.NTAccount])

  + CategoryInfo          : NotSpecified: (:) [], MethodInvocationException
  + FullyQualifiedErrorId : IdentityNotMappedException

PS C:\util> Write-Host "Resolved user name: " $objUser.Value
Resolved user name:
PS C:\util>

Any ideas?

Thank you

Tom

aaron-hardy · October 29, 2019, 7:56pm

If you note the + FullyQualifiedErrorId : IdentityNotMappedException, the SID can’t be mapped to a known identity. This error will happen if the AD object doesn’t exist (now orphaned) and therefore cannot be mapped, or if for some reason the DC can’t be connected to.

Topic		Replies	Views
Question on how to deal with expected errors? PowerShell Help	8	124	December 18, 2015
How do I Find user SID from Registry PowerShell Help	0	156	December 31, 2011
AD Account script error. PowerShell Help	0	99	December 26, 2019
Debug my mass add AD user script PowerShell Help	1	141	November 14, 2014
Question about JEA Role Capabilities file configuration PowerShell Help	1	144	March 10, 2020

Get Sid Script not working

Related Topics