Help Center> Bare Metal Server> FAQs> OS FAQ> How Do I Change the SID of a Windows Server 2012 BMS?
Updated on 2022-12-02 GMT+08:00

How Do I Change the SID of a Windows Server 2012 BMS?


A Security Identifier (SID) is a unique value that identifies a user, group, or computer account (administrator account). When an account is created for the first time, a unique SID is assigned to each account on the network. A SID is determined by the computer name, current time, and CPU use time of the current user-mode thread.

A complete SID contains:

  • User and group security description
  • 48-bit ID authority
  • Revision level
  • Variable sub-authority values

An example SID is S-1-5-21-287469276-4015456986-3235239863-500.






The string is a SID.

SID version

SID authority, which is NT in this example

SID sub-authorities

Accounts and groups in the domain

Currently, all the Windows Server 2012 BMSs have the same SID. In the cluster deployment scenario, you need to change the SID of the BMSs to ensure that each BMS uses a unique SID.


  1. Log in to the BMS OS.
  2. Click in the lower left corner, choose Windows PowerShell, and run the whoami /user command to query the SID.
    Figure 1 Querying the original SID
  3. Modify the Cloudbase-Init configuration files.
    1. Open the cloudbase-init.conf and cloudbase-init-unattend.con files.

      File directory: C:\Program Files\Cloudbase Solutions\Cloudbase-Init\conf

    2. Add first_logon_behaviour=no to both files.
    3. Delete cloudbaseinit.plugins.common.sethostname.SetHostNamePlugin from the cloudbase-init-unattend.conf configuration file.
      Figure 2 Modifying the configuration file
  4. Open the CLI and run the following command to open the Sysprep window:
    C:\Program Files\Cloudbase Solutions\Cloudbase-Init\conf> 
    C:\Windows\System32\Sysprep\sysprep.exe /unattend:Unattend.xml
  5. In the System Preparation Tool 3.14 dialog box, configure parameters and click OK.
    Figure 3 System Preparation Tool settings
  6. After the configuration is complete, the BMS automatically restarts. You need to encapsulate and decompress the package again. After the BMS restarts, you need to reset the password for the Windows OS. For details, see Resetting the BMS Password.
  7. Log in to the BMS OS and check the SID using the method in 2.
    Figure 4 Querying the new SID

    As shown in the preceding figure, the SID has been changed successfully.