Converting ObjectSID values to Base64 strings appears to produce duplicate values (4369251)

Converting ObjectSID values to Base64 strings appears to produce duplicate values

When using an Active Roles Workflow Update Activity step to convert SID values to String values, occasionally duplicate values are generated. As SID values are usually unique within an environment, duplicate Strings are unexpected.

Active Roles Workflow Update activities use an internal Base64 conversion when copying a SID value to a String. With Base64, capital and lowercase characters are differentiated as separate characters, so some converted string values may appear the same to processes that are not checking for case sensitivity, when they are actually different values based on capitalization.

For example, consider the following ObjectSid values:
  The ObjectSid values are different, however when converted to Base64 they are almost identical:
  When using converted Base64 SID values, always ensure any automation is checking for case sensitivity. If this is not possible, it is suggested to use PowerShell to convert the SID values to a format other than Base64, or use a different attribute.