byd2k
asked on
Using ADMT to Migrate User Accounts from Windows 2000 AD Domain to a Windows 2008 Domain
Hi Experts,
I created a lab environment to start working on a server migration project. My goal is to move the user accounts from a Windows 2000 AD Server to a Windows 2008 AD Server. I have information overload from Google, but I did not find any web page that has steps 1 through 100 that show you exactly how to do this.
I believe that what I need to do is run MS's ADMT and then figure out the rest of the process.
What I've done so far is:
Convert our existing AD server to a VM
Created a new VM with Windows 2008 - I also installed AD services and ran DC Promo. This also confgured DNS
On each server, I then created Secondary zones on each server
So far I think I'm on the right track...
Now when I run MS ADMT, it states that my Admin account on 2008 does not have access to the 2000 Admin account (not using the verbatim error message).
Can anyone explain to me verbatim what to do to enable trusts between both servers? Or am I going about this totally wrong?
Thanks!
I created a lab environment to start working on a server migration project. My goal is to move the user accounts from a Windows 2000 AD Server to a Windows 2008 AD Server. I have information overload from Google, but I did not find any web page that has steps 1 through 100 that show you exactly how to do this.
I believe that what I need to do is run MS's ADMT and then figure out the rest of the process.
What I've done so far is:
Convert our existing AD server to a VM
Created a new VM with Windows 2008 - I also installed AD services and ran DC Promo. This also confgured DNS
On each server, I then created Secondary zones on each server
So far I think I'm on the right track...
Now when I run MS ADMT, it states that my Admin account on 2008 does not have access to the 2000 Admin account (not using the verbatim error message).
Can anyone explain to me verbatim what to do to enable trusts between both servers? Or am I going about this totally wrong?
Thanks!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks for your help. The instructions were pretty generic. What I actually had to do was this process, however from the Windows 2008 side. When I configured the server from the 2008 side for trust, it populated the trusts in Windows 2000. For some reason I could not follow the instructions verbatim.
Thanks again,
Byd2k
Thanks again,
Byd2k
ASKER
On the Windows 2000 server, I ended up getting to step 4 where you have to enter in the other domain name.
Windows comes back with the error:
AD cannot verify the trust.
The error returned was: The security database on the server does not have a computer account for this workstation trust relationship.
I tried to do as the instructions state, but I can't add this server as a computer on the other server because the trust isn't setup correctly. ;)
I upped the points.
Thanks again,
byd2k