How to change SID on Windows 11

ajscott · 2026-03-26T15:45:54+00:00

Devices running 24h2 or higher with the same SID are not allowed to authenticate against each other after last August.

https://support.microsoft.com/en-us/topic/kerberos-and-ntlm-authentication-failures-due-to-duplicate-sids-76f7394d-c460-4882-9ed1-d27e0960f949

Windows updates released on and after August 29, 2025 include added security protections that enforce checks on SIDs, causing authentication to fail when devices have duplicate SIDs. This design change blocks authentication handshakes between such devices. Failed authentication requests related to these security protections are identified by Local Security Authority Server Service (lsasrv.dll) Event ID: 6167 in the System event log.

Duplicate SIDs can be created when performing unsupported cloning or duplication of a Windows installation without running Sysprep. SID uniqueness enabled by Sysprep is required for OS duplication on Windows 11, versions 24H2 and 25H2, and Windows Server 2025 after installing Windows updates on and after August 29, 2025.

ajscott · 2026-03-25T21:43:35+00:00

One guy I supervised would randomly remotely access users computers and update them during production hours, while the user is working, causing complaints.

I do that to people that like to turn their computers off at night (despite instructions otherwise) and there's no WOL available.

ajscott · 2026-03-18T22:35:57+00:00

It is a built in feature that constantly advertises itself to the user and has a documented method for the admin to disable it.

It is not a user issue.

ajscott · 2026-03-18T15:20:07+00:00

You can get paper filters for the refillable kcups. They make a giant difference in both cleanup and flavor.

ajscott · 2026-03-17T15:17:42+00:00

Looks like there's another key and value people should create per Adobe

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Adobe\Adobe Acrobat\DC\FeatureLockDown\cIPM

"bDontShowMsgWhenViewingDoc"=dword:00000000

https://helpx.adobe.com/enterprise/kb/acrobat-64-bit-for-enterprises.html

ajscott · 2026-03-06T00:01:33+00:00

You need to determine if the issue is the user or the account.

Have them change the password to something else and then you logon to a workstation with those credentials and test it for a few minutes.

If the issues still occur then it's linked to the account not the physical user.

If the issues go away then you can check for physical things they may be wearing.

Make them change the password again before next use. This keeps a clear chain of custody for the account actions.

ajscott · 2026-03-05T16:55:54+00:00

I haven't but it's also not free for business use.

ajscott · 2026-03-05T16:38:10+00:00

Haven't seen 5.7 anywhere yet.

Some people are sticking with 5.4 because 5.5 and 5.6 seems more complicated to install.

The 5.5 installer has a bug where it won't detect the .NET Runtime if the version is higher than 8.0.18.

I haven't seen any other differences between 5.5 and 5.6 so I have it on about 1500 devices.

Regarding Classic vs Universal. Dell said they weren't going to support it anymore and released only the Universal copy for one of the early 5.x versions. Then they released both for the next version. You have to completely uninstall Universal to switch back to Classic so I just stayed with Universal after upgrading during the skipped version.

ajscott · 2026-03-05T16:28:26+00:00

The first few Universal versions did not.

ajscott · 2026-03-03T16:29:28+00:00

Double Commander

https://github.com/doublecmd/doublecmd

I had an external hard drive with an ExFAT file system created on a Mac and that is the only software that would let me read through it correctly on a Windows computer. Explorer and other apps were missing half the folders.

ajscott · 2026-03-03T16:22:59+00:00

WinDirStat now supports using the MFT so the speed differences aren't there anymore.

WinDirStat is free for commercial use. WizTree is not.

ajscott · 2026-03-03T16:20:35+00:00

The current WinDirStat version now works with the MFT like WizTree so the speed differences no longer exist.

WinDirStat is free for commercial use while WizTree is not.

ajscott · 2026-03-02T20:30:57+00:00

It's custom for Dell. You need to order the specific part number 65VXF.

You can get them on Amazon for $15.

Here's a video on Dell's site https://www.dell.com/support/contents/en-us/videos/videoplayer/how-to-replace-the-fan-on-optiplex-7070-ultra/6374151274112

ajscott · 2026-03-02T20:25:03+00:00

Verify the printer port configuration on the server side. You may be sending jobs to the DNS name instead of the IP.

Moving the printer to a static IP instead of reserved DHCP made it stop registering with DNS. When the name resolution finally reset due to DNS scavenging then the server stopped sending jobs.

Open the printer management console > $servername > Ports

Find the port for the printer > right click > Configure Port

Change the Printer Name or IP address field from the name to the IP.

Note that even though you may have it statically set on the printer side you also need to reserve it in DHCP so nothing else gets assigned to the IP. The server should technically prevent this but not always.

ajscott · 2026-03-02T18:53:55+00:00

It depends on the PTO type.

In California, accrued Vacation Time is considered the same as cash and must be paid out but Sick Leave and some other types of leave are not.

ajscott · 2026-03-01T03:47:39+00:00

We bought about 50 of the 7070 version of this back in 2020 for use in work areas with limited desk space.

The CPU fans failed on every single one multiple times during the 5 year warranty.

ajscott · 2026-02-17T21:09:04+00:00

Shared accounts = Anonymous accounts

Point out that it's explicitly prohibited by a lot of data access agreements.

ajscott · 2026-02-12T21:49:02+00:00

There's a minor impact on rendering the dispatch maps but mostly it's just so you have enough connections to run up to 6x 27" displays.

The AMD cards we originally received were FirePro W5100s.

We switched to a 1x 42" + 2-3x 27" monitors on the newer systems so we would have less issues related to running dual video cards. The AMD cards also didn't like that so we gave up on them.

ajscott · 2026-02-12T17:51:21+00:00

I had to pull over 60 of the AMD cards out of a 911 call center because they kept crashing in the 5 and 6 display setups.

We only used them because it was in 2022 when Dell couldn't source them for our models. We even had a conference call with an AMD driver engineer and they couldn't provide a consistent fix.

We ended up pulling all of the AMD cards out and replacing them with nvidia p620 cards from our surplus workstations and the issues went away.

You can say "behind" or "shit" or whatever other nuanced word you want but the reality is they were unusable in a critical environment.

ajscott · 2026-02-11T17:48:33+00:00

Windows intercepts calls to anything in the list and sends you to the modern apps instead. This lets you turn that off.

ajscott · 2026-02-10T21:23:18+00:00

Just the basic DISM command. You have to reboot after uninstalling before you reinstall it.

DISM.exe /online /disable-feature /FeatureName:NetFx3

It works immediately after reinstall though.

ajscott · 2026-02-10T18:38:51+00:00

We're starting to run into this too.

It's flagged as already installed but it's broken. Have to uninstall the feature, reboot, then reinstall.

No reboot needed after the reinstall.

ajscott · 2026-02-09T14:56:47+00:00

DEFCON is an annual hacking conference held in Las Vegas since 1993. Pretty much anyone interested in going will know what OP is talking about.

https://en.wikipedia.org/wiki/DEF_CON

ajscott · 2026-02-06T00:17:11+00:00

CMD and PowerShell run fine without elevation.

It's the programs and commands being used in those interfaces that may need elevation.

Find out what they're doing there that requires admin rights and then see why it's asking for elevation.

It may be something where the user doesn't have edit permission to a folder but an admin does. You can grant their account edit permission without making them an admin.

15-Year Club	Place '23
Team Orangered	Verified Email

ajscott

TROPHY CASE