Windows Server

Use NewSID to modify a cloned server's SID on your Windows Server 2003 network

Here's a shortcut for when you want to deploy your Windows Servers 2003. With NewSID, you can clone a base security identifier (SID) and give each new server its own identity.

There are multitudes of ways you can quickly deploy new Windows Servers 2003 without having to go through the full installation process. Particularly when it comes to using virtualization and creating a base image for a server system, you'll need to go through the process of modifying the system's security identifier (SID) or you'll wreak havoc on your Windows Server 2003 network.

Microsoft's deployment tools are very good about handling this detail, but other cloning methods are not always able to handle this task.

Sysinternals' free utility, NewSID, aims to help you correct this problem. NewSID generates a random SID for the computer and replaces every occurrence of the old SID with the new one. NewSID can also change the name of the computer, which is useful if you've cloned a complete base image.

To automatically execute NewSID and change the name of your server from the command line execute:

newsid /a [new_name]

After a reboot, your computer will have the name you specify and a unique SID.

Miss a column?

Check out the Windows Server 2003 archive, and catch up on the most recent tips from this newsletter.

Stay on top of the latest WS2K3 tips and tricks with our free Windows Server 2003 newsletter, delivered each Wednesday. Automatically sign up today!

11 comments
urielc
urielc

For machine virtual

K.Tolstoy
K.Tolstoy

I've some problems with SID changing after the deployment. Because Windows also have many unique ID, for example network interfaces ID. I?ve issue with MS Windows Network Load Balancing it doesn?t working on two virtual machines deployed from single image, because as I mentioned before it doesn?t changing network identifiers. So be careful with this ?New SID? utility.

pnb51
pnb51

Does it also work with XP & Vista too?

enieves
enieves

I believe I am a victim of this issue. I have a few computers that I cannot access remotely and I believe they are related to newsid.exe. To test this theory, I used a loaner laptop that I could not access remotely. I reran newsid.exe and viola! Network access is enabled. BUT! It doesn't always work. I have a couple more laptops that cannot be reached remotely and some VM server installs with the same deal. So how do I go about changing the network identifier? It may fix this problem so my users can access the VM servers for testing.

fmendez
fmendez

I think this tool was mainly developed for end-user clients or workstation on a massive scale.

bobthegiant
bobthegiant

This tool looks pretty limited. Do you know of a tool or method for cloning an Active Directory Domain Controller? We occasionally have the need to duplicate a production AD domain for testing and developement purposes. I usually create an internal network on ESX and bring a copy of the DC up in an isolated environment. This has severe limitations and drawbacks. It would be nice to be able to bring it up as a DC in another forest (with all computer and user accounts in tact).

rkuhn040172
rkuhn040172

It works on XP just fine, not sure about Vista just yet but I have no reason to think it wouldn't.

gsmith
gsmith

Since newSID has been retired, the Microsoft supported method of changing SIDs for cloned machines is to use SysPrep.

SysAdminII
SysAdminII

If you have a copy of Symantec Ghost setting around, you might try ghostwalker. it's usually incorporated in any version of ghost.

SysAdminII
SysAdminII

Just run this utility on Windows XP and Windows 2003 Server R2 with SQL 2000 Standard and had no problem. I had two virtual servers that had access to my internal network and run the newsid generator and did not show a duplicate name on the network. I might mention that I had DHCP enabled to allow new machine to have an IP when it was started. You can think Mark Russinovich for that cool little utility from Sysinternals.

Editor's Picks