Today I found that the new user could not access the shared folder, I checked with “net usersidlist” and found no new user in the list
the logfile auth_audit.log
{"timestamp": "2021-12-02T15:09:59.274993-0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 2}, "eventId": 4625, "logonId": "0", "logonType": 3, "status": "NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:192.168.3.99:445", "remoteAddress": "ipv4:192.168.3.106:50017", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "DESKTOP-F7B2KJ4", "clientAccount": "Laura", "workstation": "DESKTOP-F7B2KJ4", "becameAccount": null, "becameDomain": null, "becameSid": null, "mappedAccount": "Laura", "mappedDomain": "DESKTOP-F7B2KJ4", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "NTLMv2", "duration": 1710}}
All other old users are working.
the logfile auth_audit.log
{"timestamp": "2021-12-02T15:09:59.274993-0800", "type": "Authentication", "Authentication": {"version": {"major": 1, "minor": 2}, "eventId": 4625, "logonId": "0", "logonType": 3, "status": "NT_STATUS_NO_SUCH_USER", "localAddress": "ipv4:192.168.3.99:445", "remoteAddress": "ipv4:192.168.3.106:50017", "serviceDescription": "SMB2", "authDescription": null, "clientDomain": "DESKTOP-F7B2KJ4", "clientAccount": "Laura", "workstation": "DESKTOP-F7B2KJ4", "becameAccount": null, "becameDomain": null, "becameSid": null, "mappedAccount": "Laura", "mappedDomain": "DESKTOP-F7B2KJ4", "netlogonComputer": null, "netlogonTrustAccount": null, "netlogonNegotiateFlags": "0x00000000", "netlogonSecureChannelType": 0, "netlogonTrustAccountSid": null, "passwordType": "NTLMv2", "duration": 1710}}
All other old users are working.