We help IT Professionals succeed at work.

Migrating Users with Passwords on ADMT Version 3 Not Working

923 Views
Last Modified: 2008-10-06
I am doing this in a lab currently to flush out the 'gotchas'. I have (2) forests, test.com and newtest.local. Both with W2003 SP2 and Exchange SP2. Users have logon scripts and roaming profiles. I have an XP machine joined to both domains to test the clients before/afterwards.
I have been following the migration guide, and setup a 2-way trust...
Installed ADMT on the target server and created an encryption key. I then ran the PWDMIG.msi on the source server and used the previously mentioned key. Rebooted the server and started the password export services. When I went to migrate my test users with passwords, I got an error something like "unable to create session...the local domain doesn't have an encryption key"
As I mentioned above, seemed to do everything by the book and set the reg entry for allowpasswordexport (or whatever it is) to "1".
Anything I am missing?
I plan to do the migration in the order it is in the drop down menu, then the file migration tool and then exchange mailbox (exmerge)
Comment
Watch Question

CERTIFIED EXPERT
Top Expert 2012

Commented:
I'm not positive about this problem because I haven't had this issue before but this might help.

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/Windows_2000_Active_Directory/Q_23271420.html

Author

Commented:
I actually found the answer. Somehow Microsoft forgot to mention that you need to run the ADMT key /option:import command on the source server to import the key file.

This link gives some nice documentation on the process.
http://www.markwilson.co.uk/blog/2007/12/migrating-passwords-with-the-active-directory-migration-tool.htm

Author

Commented:
after all the hoops I jumped through, I noticed that this process requires users to change their passwords upon first logon. Is there any way in the ADMT wizard to suppress this so users can logon to the new domain transparently?
CERTIFIED EXPERT
Top Expert 2012

Commented:
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.