When you attempt to connect to a Windows NT 4.0 server share, or you try to log on to the server, you receive error 1384:
During a logon attempt, the user's security context accumulated too many security IDs.
Windows NT 4.0 has a hard coded limit of 1000 SIDs in a user's access token.
You could exceed this limit if the user was a member of more than 1000 groups.
If the server is in a resource domain, the number of groups that the user belongs to is the sum of their group membership in the resource domain and global group membership in the trusted account domains.
If you add the user to 1 global group in the accounts domain and that global group is a member of 5 local groups in the resource domain, the total group membership would increase by 6.