I have over 1600 PC's that use a SINGLE image that has never had sysprep run on it and 4 different hardware types to boot. I do not use ghostwalk or any other sid generator either. The only real purpose resetting the local SID serves is if you use local accounts (other than admin of course). Domain level accounts will always have a different SID. Local accounts on the other hand when generated will have similar SID even if the name is different. So PC A has Joe User A as the first set SID and PC B has Joe User B as the first SID set, the SID's could be the same and then Joe User A could connect to PC B with his credentials but appear to be Joe User B to PC B. Hopefully that is not too confusing. I don't rely on the ghost method of joining the domain because it is unreliable when your talking about the scale I am. We run scripts after the machine is imaged that remove the entry from the domain completely then use NetDOM to rejoin the domain and put the entry in the proper OU.
Bottom line, if you are backing up each machine to itself, the best bet is to just unjoin the domain. Then when you clone the machine back, rejoin. Netdom Can do both those functions, so can GSS. Netdom runs in to issues if the account already exists. Netdom Can resync accounts but again for reliability purposes we just remove the machine from the AD then rejoin.
Message Edited by David.Poprik on 05-01-200710:55 AM