In Windows security, a SID is best described as what?

• A. A unique identifier assigned to each user account that is not reused
• B. A password hash used for authentication
• C. A logon token issued after successful login
• D. A network address assigned to machines

Answer: (A)

A SID (Security Identifier) is the unique value Windows uses to identify a security principal, like a user, group, or computer account, in all access control decisions. It’s not a password hash, nor a logon token, and it isn’t a network address. SIDs are designed to be unique and not reused for other accounts; the operating system relies on this identity to determine who can access what, regardless of any name changes. In practice, each account gets its own SID (often as a domain SID plus a relative identifier), and ACLs reference these SIDs to grant or deny permissions. When you log in, Windows creates a logon token that includes the user’s SID and the SIDs of their groups, but the token is separate from the SID itself.