Applications cannot be launched as admin in a sandbox with "UseCreateToken/SandboxieAllGroup" enabled when using an MSFT account

Describe what you noticed and did

When using a Microsoft account, programs cannot be run as an administrator in the sandbox with the UseCreateToken/SandboxieAllGroups setting enabled.

Create a user using MSFT account
Add either UseCreateToken=y or SandboxieAllGroups=y to the box configuration. (Standard)
Run Command Prompt (as Admin)
Start.exe: SBIE1222 Error with security token: [C000005B / A3]

STATUS_INVALID_PRIMARY_GROUP

https://github.com/sandboxie-plus/Sandboxie/assets/6871698/2f752b86-a3d5-4bb1-b494-6a62291e707c

How often did you encounter it so far?

Every time

Expected behavior

It should work without errors.

Affected program

Any program as admin

Download link

Not relevant

Where is the program located?

Not relevant to my request.

Did the program or any related process close unexpectedly?

No, not at all.

Crash dump

No response

What version of Sandboxie are you running now?

Sandboxie-Plus 1.14.2 64-bit

Is it a new installation of Sandboxie?

I recently did a new clean installation.

Is it a regression from previous versions?

No response

In which sandbox type you have this problem?

In a standard isolation sandbox (yellow sandbox icon).

Can you reproduce this problem on a new empty sandbox?

I can confirm it also on a new empty sandbox.

What is your Windows edition and version?

Windows 10 Pro 22H2 64-bit (19045.4529) and Windows 11 Pro 23H2 64-bit (22631.3447)

In which Windows account you have this problem?

A Microsoft account (Administrator)., An account with UAC protection set to Always notify.

Please mention any installed security software

Microsoft Windows Defender

Did you previously enable some security policy settings outside Sandboxie?

No response

Trace log

No response

Sandboxie.ini configuration

UseCreateToken=y
SandboxieAllGroup=y
DropAdminRights=n
FakeAdminRights=n

sandboxie-plus / Sandboxie