Moving to a new domain
Posted on 2004-11-17
I rather messed up my production AD server, however managed to get it operational for all intents and purposes. However there are still some errors which seem to indicate that replication with another AD server will not take place (the next step was to implement another AD server, but thats taking the back seat). So now, I have built a new Windows 2003 AD server. I would like to move all the Kerberos Principles, and AD Computer objects to a new domain, WITH THE SAME NAME. Basically I do not want to rebind hundreds of lab machines to a new domain (I know a script may be written, I would just prefer to not do it that way). I know I can use ldifde to extract all the LDAP ifnormation, however how I get the kerberos principles out and into the new AD server I dont know. Any suggestions?