Active Directory, Joining Domain - avoid creating new profile

Posted on 2005-05-09
Last Modified: 2008-02-01

Just setup Active Directory, am trying to move users from our existing workgroup into this domain.

This is the first / only domain in the company.
There are only about 10 users
About 5 users (the developers) have loads of personalisation within their profiles

I'm creating a new user in the domain (username/password is made to match the local user)

When I move the computer into the domain (from the workgroup) it is creating a brand new profile, as user.domain (in the local machine docs & settings folder)

The "old" local account is still there as "user" (in the local machine docs & settings folder)

OK - whilst I've only go a few users it's still a pain having to resetup all of the profiles etc. on the new domain user account.

Question is:
Is there a way to "force" the old local account to become the new domain account?
Is there a way to move all of the old local account settings into the new domain account?

Please be gentle, I've only been using Active Directory for about 2 hours !

Question by:chris000
    LVL 14

    Assisted Solution

    You might try using the Active Directory Migration Tool:

    Or - after you've logged in with the new domain user account once, log out and back in with an account that has admin rights.  Then browse to c:\documents and settings.  Find the USER folder and the USER.DOMAIN folder.  Delete the USER.DOMAIN folder (the one that was autobuilt from the Default User profile).  Rename the USER folder USER.DOMAIN (case sensitive - make it identical).  Log back in with the domain user account, and you *should* have the old local profile back.

    If that doesn't work, log in as admin again.  Browse to c:\documents and settings again.  Now you should see folders named USER.DOMAIN and USER.DOMAIN.000.  The data you want to save is now in USER.DOMAIN, and the profile folder used by the domain account is in USER.DOMAIN.000.  Open the USER.DOMAIN folder.  Make sure you are showing hidden files and folders as well as system files (Tools > Folder Options > View tab).  Select all files and folders, then DESELECT NTUSER.DAT and NTUSER.DAT.log (hold CTRL while clicking those items to deselect them).  Copy the remainder of the files and folders and paste them into the USER.DOMAIN.000 folder.

    *NOW* log back in as the domain user account.  That should definitely work.
    LVL 18

    Accepted Solution

    Just copy their old profile to their new profile and everything will be back to normal.

    Windows sees the domain account as a new account and so therefore it creates a new profile. These profiles are locally so you don't need to do anything in active directory :)

    From the workstation:

    Log in as an administrator (and not the user who's profile you are copying)

    Right click on my computer- properties- advanced tab

    click on settings under "user profiles"

    You should now see a list of accounts

    The old account will be listed as comptuername\username and the new one as domain\username

    Choose the old account and click "copy to"

    Then browse to c:\documents and settings and find the new profile for the user and choose it

    Also under "permitted to use" click change and add the domain account here

    Restart and then when the user logs on, he/she will have their old profile back


    Author Comment

    thanks guys - I'm in the process of giving it a go, just waiting for users to finish their work....
    LVL 14

    Expert Comment

    Do luv2smile's first.

    Author Comment

    I did ! (:

    However, due to my initial attempts it didn't totally work, which is where your answer came in ( as it created a .000 when I logged in)

    So, I guess you've both answered my question. Any idea how to split the points --> can I click Accept twice?

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    FIPS stands for the Federal Information Processing Standardisation and FIPS 140-2 is a collection of standards that are generically associated with hardware and software cryptography. In most cases, people can refer to this as the method of encrypti…
    The Need In an Active Directory enviroment, the PDC emulator provide time synchronization for the domain. This is important since Active Directory uses Kerberos for authentication.  By default, if the time difference between systems is off by more …
    Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    23 Experts available now in Live!

    Get 1:1 Help Now