• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 194
  • Last Modified:

Domain Moves

I have a couple of domains. a.local, b.local, c.local etc....  I want to move all domains to one domain (a.local).  All of these sites are connected to a.local via a site to site vpn w/ pix or L2L via ASA.  Each domain has their own domain controllers and they authenticate locally.  What do I need to do to move these domains to a.local?  What steps should I take prior to the conversion?  I am going to start with our smallest domain and work my way to the largest.  I just want to make sure that I don't forget anything as this is a production environment.
0
PC4N6
Asked:
PC4N6
1 Solution
 
Mike KlineCommented:
Do you have a test lab or environment?  That is the first thing you will need as you will definitely want to test out any migration plan first.  
What I would start with is making a decision on the migration tool.  You have some choices.  For a free tool Microsoft's Active Directory Migration Tool is what you will go with.
If you have money for a third party tool you can look at offerings by Quest or NetIQ.
What you need to do is once you pick a tool just try to become very familiar with it and read all the documentation.  To start of for ADMT they have a 300 page whitepaper
http://www.microsoft.com/downloads/details.aspx?familyid=D99EF770-3BBB-4B9E-A8BC-01E9F7EF7342&displaylang=en
How many objects in these domains?
Thanks
Mike
0
 
PC4N6Author Commented:
Hey Mike,

Thanks for the info.  It has taken me some time to read through the big ass manual!  I have a couple of questions in regard to this move.  I will be using the free Microsoft ADMT v. 3.  Right now all of my domains have users that use terminal services through Citrix.  Now, our Citrix servers are already in the target domain.  Each of those users has an AD account already in that domain just for Citrix access.  We use a login script to do all of the mappings for Citrix.  I guess the big question is what is going to happen when I migrate user accounts from the source domains to the target and they already have AD accounts?  How do I deal with this issue?  Would this be a good time to make a change to our naming convention for our users (so that we can standardize across the board) ?  Also, what about any "generic" accounts (user) that use multiple computers on the LAN?  I am wondering how the computer migration will deal with the profiles....  Are we going to need to authorize ISA and or DHCP once the migration is complete?

Thanks a lot for any/all input you may have!
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now