 |
| PRODUCTS
|
|
|
|
|
| SIDCHG - SID changer utility |
| Overview |
|
SIDCHG (SIDCHG64 on 64-bit Windows) 3.0g is a command-line utility to modify local computer
SID and computer name, for Windows 2019/2016/10/8.1/2012 R2/8/2012/7/2008 R2. It replaces current computer SID with new random SID. In addition,
it changes the WSUS ID for Windows Updates, the MachineGuid, the Machine ID, the Device Identifier for modern Windows apps, the MSDTC CID, the Dhcpv6 DUID,
the SQL Server Master database, the encryption state to preserve encrypted files,
Windows Action Center settings, Certificates and other encrypted stored information.
Preservation of credentials stored in Windows Vault is possible with prior preparation of Vault backup. Optionally OneDrive can be reset.
|
|
| Usage |
SIDCHG64 [options]
/COMPNAME: New computername, ? = random hex character, * = mac address (hex)
/F: Omit confirmation
/R: Reboot after SID change
/S: Shutdown after SID change
/WS: Seconds to wait before shutdown/reboot
/FS: Force Shutdown/Reboot without closing applications
/NS: Don't change SID, only set computername
/KEY: License key
/SK: Store licence key in registry for later. SID will not be changed if /SK is specified
/RMK: Remove license key from registry after SID change
/OD: Reset OneDrive. This avoids OneDrive synchronization issues if both original and clone are active with same user.
Following options are advanced (not for normal use):
/CNMF: Map file /COMPNAME will be mapped against, with lines map=compname
/OS: Windows-directory (e.g C:\Windows) of OS to modify, if not running OS
/D: Drives to check for SID (e.g /D:CDE). Per default, SID will be changed on all local harddrives
/SID: New SID value. Per default, SID will be set to random value
/NW: Don't change WSUS ID
/NCID: Don't reset MSDTC CID
/NPP: No Run Once-post processing. Transparent post processing is needed to preserve encrypted files and other user settings.
/NDI: Don't reset Device ID.
/NMG: Don't reset Machine GUID.
/NMID: Don't reset Machine ID
/NDUID: Don't reset Dhcpv6 DUID.
/NSQ: Don't change SQL Server master database. When changed, a backup copy of the original master database is copied to C:\Windows\Temp-directory
/NMA: Don't reset McAfee ID.
/FDID: Full reset of Device ID (can invalidate System Activation)
/REVERT: Reverts SID back to previous value after complete or interrupted SID change
/CLEARMSG: Clears SID change message at login after interrupted SID change
/FF: Allow SID change with anti-virus real-time protection left on, SID to be changed on removable drive, or for unsupported Windows version
Best usages:
SIDCHG
SIDCHG /COMPNAME:compname
SIDCHG /COMPNAME:compname /F /R /OD
Set computername after mac address:
SIDCHG /COMPNAME=* /CNMF=map.txt where map.txt has lines macaddress=compname
Change of computer SID risks data loss and system damage. Do not interrupt SID change in process!
|
|
On Windows 8, 8.1 and 10, user will be logged out and SID will be changed in background, after which the computer will shut down (default) rsp. reboot (if /R is specified),
to preserve modern interface user settings.
Do not log in and do not turn off or shutdown the computer while SID change is running in background!
While SID change is running in background, following message appears at Login screen, showing actual progress state of SID change in process:
It is very important to not log into the computer and not shutdown the computer while SID change is running in background ! This is necessary to preserve
the Windows 10 user interfaces and apps.
After completing the SID change, the system will automatically shut down or reboot. Do not do that yourself, do not log in, and do not interfere. Best is to not touch the PC at all before the automatic shutdown/reboot !
|
| Pricing |
| SIDCHG is free to try for evaluation for 30 days maximum, but not free to use.
|
|
| SIDCHG/SIDCHG64 license agreement |
|
|
| Trial key |
Monthly trial keys for evaluation purposes are available. Trial key valid September 2021:
New trial key will be uploaded during 5th-10th day of month.
|
|
| Purchase license |
| Upon registration, you will be sent license key for SIDCHG 3.0.
License key can be stored in registry, for easy management. Visit Purchase page.
|
|
| Note on Anti-Virus |
|
SIDCHG demands real-time antivirus protection Windows Defender or other to be turned off before running SID change.
There is too much danger otherwise that Anti-virus protection will stop running SID change process in the middle of operation,
leaving the system in a bad state.
Windows Defender turns real-time protection back on automatically after reboot.
SIDCHG commandline option /FF allows SID change to run with real-time anti-virus enabled, but it is not recommended.
|
|
| Note if SID change takes long time |
|
Before acting, please let it run for at least 15 minutes. Then check if progress message with progress number shown in image above changes.
Press OK button in progress message screen and then click on login screen to have progress message display show up again with new progress.
If progress message and progress number BOTH stay unchanged for 5 minutes,
it can be assumed that the program is no longer running and terminated abnormally. If only progress message stays unchanged but progress number changes,
the SID change is still actively being worked on.
|
|
| Note if SID change has been interrupted and SID change message remains at login screen |
If running SIDCHG has been interrupted, use SIDCHG /CLEARMSG to remove SID change message at login.
SIDCHG /REVERT allows to undo SID change. Undo of an interrupted SID change is best done from a local Account with Administrator rights,
which is created in advance (before performing the initial SID change), and which is used explicitely for that purpose (an account where it doesn't hurt if it gets damaged).
After an interrupted SID change which is going to be reverted, do not log in with a user account which is actively in use, before the revert is complete.
Do not interrupt revert operation, at least not before letting it run at least same amount of time as original SID change.
Please be careful to not interrupt SIDCHG while it is doing SID change, before waiting lengthy time and being sure it is not working correctly.
Please also check for a file with name SIDCHGxxx.dmp (xxx any characters) in folder C:\Windows\Temp. If such a file exists after unsuccessful SID change, please send the file to support@stratesave.com ,
Thank you. This allows for analyzing the problem and working on a fix.
|
|
| Note if SID change has been interrupted and modern Apps are not starting correctly |
Use following command, run from Administrator Powershell, to repair your system (ignore error messages):
Get-AppXPackage -AllUsers | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register "$($_.InstallLocation)\AppXManifest.xml"}
|
|
| Note about Windows Licensing, KMS et al |
|
SIDCHG does not affect Windows licensing. Use slmgr -rearm to reset licensing information of imaged clones, in addition to calling SIDCHG(64).
|
|
| Note about SID change from Windows PE |
|
SIDCHG supports SID change from Windows PE, with SIDCHG commandline option /OS:C:\Windows, pointing at the System to be changed. The Windows version of the PE should be the same or
greater than the system to be changed. To change the SID of a Windows 10 System from PE, for best results use Windows 10 PE.
|
|
| Note about SID change of domain computers |
|
After the SID change computers on a domain possibly loose domain membership and need to rejoin. In addition, SID of a domain controller server cannot be changed.
To change the SID of a domain controller, it needs to be demoted first, and promoted again after SID change.
|
|
| Note about EFS encrypted files |
|
SIDCHG supports preservation of encrypted information, including NTFS encrypted files. Please note that EFS encrypted files cannot always
be preserved. If it is necessary to preserve encrypted files, best to save the EFS certificate in advance, for example with rekeywiz-command.
|
|
| Note about preservation of credentials stored in Windows Vault |
|
To preserve stored credentials after SID change, create a backup of the Vault before the SID change using Credential Manager's backup functionality.
The backup needs to be stored in user's TEMP-directory with the name SIDCHG.crd. The password of the vault is SIDCHG. User's TEMP-directory can be determined with command echo %TEMP% from command prompt.
Often it is C:\Users\username\AppData\Local\Temp. After the SID change and recovery of the Vault credentials, the SIDCHG.crd file will be deleted. To prevent the deletion, assign READ-only attribute
to the file. For increased security, the file can optionally be stored NTFS-encrypted.
|
|
| Note about SID change with BitLocker |
|
SIDCHG must not be run with BitLocker Volume encryption enabled. This leads to complete data loss. BitLocker needs to be turned off and drives being decrypted.
If desired, BitLocker can be reenabled after the SID change.
|
|
| Note about storing key with /SK and /RMK options |
|
The /SK option stores the Registration Key in Windows registry without doing the SID change while the /RMK option removes the Key from registry while also doing the SID change.
The usual usage is to store the key in the base image with SIDCHG /SK. On the clones the SID can then be changed without specifying the key. If you prefer the key to be removed
after the SID change, use /RMK option when changing the SID.
|
|
| How to be alerted about updates of SIDCHG |
|
To be informed when an update of SIDCHG becomes available, use service webalert.email. After registering and signin in, Add a New Web Alert for Url https://www.stratesave.com with keyword SIDCHG,
or possibly with key word New! which will inform you about any new or updated Stratesave Software.
|
|
|
