This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 27%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Hello,
While deploying SCOM servers,I found that all serves related to SCOM management servers, gateways and some agents are having the same local SID, is it possible it causes problems.
keep in mind some agents have the same SID as the management servers,also gateways are in different forest without trust so we are using certificate
In all these cases can we have any issue due to duplicate SID
Hi @Moataz Shaaban ,
What local SID are you referring to exactly? As long as the computer's GUIDs are not the same you should be fine.
----------
(If the reply was helpful please don't forget to upvote or accept as answer, thank you)
Best regards,
Leon
I mean computers machine Security Identifier (machine SID)
Machine SID = GUID, it seems that you have cloned machines? In SCOM it shouldn't matter, as SCOM checks the DNS name of the computers.
However when cloning Windows machines they should be sysprepped, this will change the machine GUID and this is the only supported way by Microsoft.
What about securing communication between gateway and SCOM management servers ?
This is not affected by the computer GUIDs.
Hi @Moataz Shaaban ,
You need to find the reason for the SID being duplicated accross your environment. One of the most common reasons is that the image has not been generalized.
Now to your actual question: Is this a problem and is this a problem for SCOM?
the answer to the second question is - "Most probably not". This can also be the answer to the first question, but it depends on other factors too. My sencere recommendation is to read the following blog post, wrtitten by Mark Russinovich and in particular the section "SID Duplication":
The Machine SID Duplication Myth (and Why Sysprep Matters)
https://techcommunity.microsoft.com/t5/windows-blog-archive/the-machine-sid-duplication-myth-and-why-sysprep-matters/ba-p/723859
here you will find also more detailed info on SIDs:
Security Identifiers - MS Docs
When exactly a SID duplication can be a problem is described in the firts reference I've posted, but It is still very important that you indentify the source of the issue and ensure that the rest of the computers in your environments are installed from generalized (syspreped) image!
I hope I could help!
----------
(If the reply was helpful please don't forget to upvote or accept as answer, thank you)
Regards,
Stoyan