Today I spent a bit too long explaining the different way that Windows XP displays the security principle identified by SID S-1-5-18.
The System account when viewed from CACLS
The System account according to Explorer
The System account according to Services
All three of these entities are the exact same Security entity in Windows XP. However, they have different names.
In a domain context they're still the same thing.The machine account is represented by "Network Service", which is the same as "NT Authority\Network". It can do everything System can, but has visibility in AD. It also requires a login.
Same thing, three different ways of saying it. Classic Microsoft.
The System account when viewed from CACLSThe System account according to ExplorerThe System account according to ServicesAll three of these entities are the exact same Security entity in Windows XP. However, they have different names.
- NT Authority\System
- System
- Local System
In a domain context they're still the same thing.The machine account is represented by "Network Service", which is the same as "NT Authority\Network". It can do everything System can, but has visibility in AD. It also requires a login.
Same thing, three different ways of saying it. Classic Microsoft.