[Webinar] Streamline your web hosting managementRegister Today


Migrate local groups from a standalone server to a DC

Posted on 2008-01-29
Medium Priority
Last Modified: 2013-12-05
I am trying to find a method of migrating users and groups from a Standalone Windows 2000 Server to a 2003 Domain controller, taking the permissions but not the data, can somebody help?
Question by:dmulholl
  • 2
LVL 19

Accepted Solution

SteveH_UK earned 500 total points
ID: 20767219
You cannot do this directly.  The SIDs are not compatible.

However, you can use the SIDWalker tools to help to adjust existing ACLs to point to new users/groups.

See http://technet2.microsoft.com/windowsserver/en/library/81e8939d-d58b-4451-958d-6f39ff5ae5541033.mspx?mfr=true

Author Comment

ID: 20767308
I will try that thnaks for the quick answer
LVL 19

Expert Comment

ID: 20767406
You're welcome.  So the steps are:

1.  Create and populate corresponding groups in Active Directory.  Your users will need to wait for replication and then log out and back in to be members of the new groups.

2.  Use the showaccs tool to see what groups have permissions assigned and where those assignments have been made.  It can also generate a map file that can be adjusted for use with sidwalker

3.  Use the sidwalker tool to change permissions in a test mode

4.  When you are confident, use sidwalker normally to make the changes

5.  Use the showaccs tool to see the end results

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This process allows computer passwords to be managed and secured without using LAPS. This is an improvement on an existing process, enhanced to store password encrypted, instead of clear-text files within SQL
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

611 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question