ADMT 3.1 is not allowing migrated users from target AD 2008 forest to access resources in windows 2003 source forest

Objectives: Customer has one AD 2003 forest and would like to migrate to new Windows 2008 AD forest. All resources from the source AD 2003 forest will be migrated using the ADMT 3.1 tool with SID history to the target windows 2008 forest.
After setting up the trust relationship between the two forests, customer was able to migrate users and computer accounts with no problem.
The major issue customer encountered is that after the user account get migrated to the windows 2008 forest user cannot access old resources in the old windows 2003 source forest. In order for the migrated user to access old resources the ACLS must be manually configured on the user account in the target forest.  
We do not know why ADMT is not re-applying the ACLS on the migrated user. Any idea?  
mjawarishAsked:
Who is Participating?
 
Chris DentPowerShell DeveloperCommented:

If you haven't disabled SID Filtering on the Trust then the SID History won't be able to help you access resources on the old domain.

See:

http://technet.microsoft.com/en-us/library/cc772816.aspx

HTH

Chris
0
 
mjawarishAuthor Commented:
Actually I was able to resolve the issue by following the steps in this link
http://technet.microsoft.com/en-us/library/cc755427.aspx
which is the same as what Chris-Dent suggested

Thanks Chris
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.