Here's the scenario:
I have 2 NT domains that trust each other.

One day, administrator on Domain A mistakenly breaks the trust with Domain B.

Domain A and Domain B administrators work together to reestablish the trusts. No problems encountered. Domain A and Domain B now trust each other again.

When users enter Domain B, but authenticate from Domain A, they can no longer access their folders. Domain A administrator says it's because the SIDs were changed as a result of the trust breaking.

Domain B administrator says, "huh"? Why would a users SID change just because the domain trust was re-established? The SID is created at the time the user is created - not recreated when a trust is made...right?

So that's the question. Why would a user's SID change just because a trust is broken and re-established? Or would it? Seems to me we've reestablished trusts many times, for many reasons, without having a SID failure.

Any thoughts? I'm inclined to think something else happened on Domain A's side but I'm writing to you all to set me straight. Thanks in advance.

Well I wouldn't have thought the SIDs would have changed, unless the accounts were recreated. Seems to me there is more of a trust issue between domain admins than their is between computers.

Yeah, I'm confused too. This is in relation to ClearCase... When the trust was broken and re-established, ClearCase no longer recognized the SIDs. Would a domain SID change when a trust is broken? It doesn't seem logical -- the domain itself didn't change.

Let me know if you have any other ideas. I'm at a loss.

Thanks!