Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1703
  • Last Modified:

Migrate user accounts to another server


Does anyone know if there is a way to migrate local user accounts from a Windows 2000 Server machine to another Windows 2000 server machine (export then import)? Ideally, with passwords as well. I don't need to know what they are per se, just need them to work on the new server.

Thanks
0
guitar7man
Asked:
guitar7man
  • 4
  • 3
  • 2
  • +1
1 Solution
 
softplusCommented:
Are you migrating the domain to another server? You can just add the new server to your domain, dcpromo to promote it to a Domain controller, wait a bit + you're done :) (at least that's how I learned it)
John
0
 
softplusCommented:
Oops, too fast, you're talking about local user accounts, sorry then that won't work... (another case of the click-finger being faster than the brain cell, sorry)
John
0
 
guitar7manAuthor Commented:
hehe.... No Problem
0
Become an Android App Developer

Ready to kick start your career in 2018? Learn how to build an Android app in January’s Course of the Month and open the door to new opportunities.

 
salvagbfCommented:
There's a utility called ldifde that comes with 2k server that you can use to export all of your accounts and then run the same utility to import them into the new domain.  It'll take some playing with though.  Here's the MS page detailing its use.

http://support.microsoft.com/kb/q237677/

Basically, the export command you'll run (on a domain controller) will follow something like this

ldifde -f users.txt -s serverName -c dn, cn, objectclass, displayname, SAMAccountName

Where dn, cn, etc are the actual parts of the user's AD object you'll be exporting.  If you don't specify the -c and options following then you'll get everything.  That is probably the best bet to begin with, then you can go through and specify what you don't want.  It'll take some trial and error but it works.  

Then the import command will be

ldifde -i -f users.txt -s serverName

I've done this many times with success.  The only thing I'm not sure about is exporting and importing a user's password.

-Bernie
0
 
guitar7manAuthor Commented:
Bernie, ___local___ user accounts... not AD...

- Ryan
0
 
salvagbfCommented:
Woops! Wow, sorry, still finishing the coffee... I wasn't even the first one to do that, man..
0
 
oBdACommented:
Open a command prompt and enter
net localgroup user >UserFile.txt
This will produce a txt file "UserFile.txt" with a list of the local users. Delete any entries you don't want to import on the other machine.
Copy this list to another computer, then run (in the directory where you put the list):
for /f %a in (UserFile.txt) do @net user %a password /add
This will create the user accounts with a default password "password".
As for transferring the passwords, try your luck with Somarsoft's CopyPwd (http://www.systemtools.com/free_main.htm).
0
 
salvagbfCommented:
I don't believe that you can import local users.  The closest thing I could find was a utility called NTUserExport that'll export user account info into a .csv file.

http://redtiesolutions.com/20901.html

-Bernie

0
 
salvagbfCommented:
oBdA, nice.
0
 
guitar7manAuthor Commented:
Somarsoft's CopyPwd (http://www.systemtools.com/free_main.htm) will export the password hashes, and then you can reimport them, but it doesn't work.

What happens is when you create the new users on the new system, they all have new SIDs. That is a problem because the old user SIDs were used when encrypting the user's passwords into those hashes.

I am going to try researching whether or not you can change SIDs for a user, and if so, if there is a utility that will do it. If I get that far and all is a success, I will try importing the password hashes and see if it works.

I'll post my results when/if I find the answer.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now