[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 255
  • Last Modified:

Migrate users from Windows 2000 Advanced Server to Windows Server 2003 Standard without using a domain.

I have a live server running Windows 2000 Advanced Server. There are four similar servers in the school district for which I work. Their main purpose is to serve websites for each school using IIS 5 and FrontPage Server Extensions 2000. Our users never log into the server except for using web services (i.e. editing websites in FrontPage or accessing our help desk website). The school district wants to upgrade our servers to Windows Server 2003 Standard Edition.

We do not want to run an upgrade installation on our server. Part of the reason for moving to Server 2003 is to try to eliminate some problems we have had that may have originated from the original 2000 Advanced Server installation.

I have a second server running Server 2003 Standard Edition that will temporarily host our website while the live server gets Server 2003 Standard Edition, IIS 6, etc. installed on it. We would like to preserve the user accounts, NTFS file permissions, and FrontPage access rights when we copy the data to the temporary server. When the installation of the OS and other software is completed on the live server, we want to then copy the data (along with the user accounts, passwords, etc.) back to the live server from the temporary server.

I do not have a domain or Active Directory setup on either server, nor am I supposed to use either a domain or AD on the server, as directed by my superiors. Is it possible to migrate user accounts, NTFS file permissions, and FrontPage access rights between two Windows Servers without the use of either a domain or AD? I have run across tools like IIS Export Utility, IIS Migration Tool, and ROBOCOPY, but I have only figured out how to use these tools to migrate the file permissions and FrontPage access rights. I still do not know how to migrate the user accounts between the server.

Of course, any help would be greatly appreciated.
0
markomni
Asked:
markomni
  • 4
  • 2
1 Solution
 
WeHeCommented:
you can use such tools like dameware or hyena for user copy.
but there is allways one problem with permissions.
you have to create the users on the new server.
and this is means new SID's for everyone.
when you copy data with old permissions on your new server, no new user will have access.
if your permissions are simple, recreate it by hand.
if not, we had to do this a few hundred times.
we wrote a little program that dumped the ACL's from filesystem into a textfile.
some data changes in the file and you can use it as input for xcacls :)
0
 
markomniAuthor Commented:
I will look into dameware and hyena for the user copy. Like you mentioned, permissions for the web are simple enough that those can be re-assigned. The majority of the work that I foresee in this migration/upgrade project is the re-creatiion of the users.

If dameware or hyena copy the users, passwords, descriptions, and groups between the servers, that would save me a great deal of time. In the two weeks of research I have put into this problem, this is the first I have heard of these tools.
0
 
WeHeCommented:
you cant copy the passwords.
but the rest should be no problem.
0
Take Control of Web Hosting For Your Clients

As a web developer or IT admin, successfully managing multiple client accounts can be challenging. In this webinar we will look at the tools provided by Media Temple and Plesk to make managing your clients’ hosting easier.

 
markomniAuthor Commented:
If I cannot copy the passwords, what passwords will the user accounts have?
0
 
markomniAuthor Commented:
I just tried the Hyena software, and it appears that I can copy users between Windows machines, and set a default password for these accounts. The problem of SIDs from one machine being different than the SIDs from the second machine still exists. I believe I read somewhere else on Experts-Exchange that a text dump of the SIDs from one server can be made so that ACLs could be imported with the appropriate SIDs, but that may be more work than just re-assigning FrontPage permissions manually for a couple of hundred FrontPage webs.

Thank you to WeHe for the suggestions and help.
0
 
markomniAuthor Commented:
It looks like where I read about the text dump of SIDs was above in WeHe's first comment :-)
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 4
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now