Password Migration encryption key

I am trying to do an AD migration to another domain.  I am trying to create the encryption key for the password migration.  I am using ADMT v3.  Here is what I have typed that keeps getting errors.

at command line:


admt key /option:create/sourcedomain:a.local/keyfile:c:\\migration/keypassword:xxxxx

can someone please tell me why this is not working and what I need to do to correct this problem?
PC4N6Asked:
Who is Participating?
 
debuggerauConnect With a Mentor Commented:
have you verified the trust setup is working before starting?

I found this:
At a command prompt, run the ADMT KEY sourcedomainpath [* | password] command to create the password export key file (.pes). In this example, sourcedomain is the NetBIOS name of the source domain and path is the file path where the key will be created. The path must be local, but can point to removable media such as a floppy disk drive, ZIP drive, or writable CD media. If you type the optional password at the end of the command, ADMT protects the .pes file with the password. If you type the asterisk (*), ADMT prompts for a password, and the system will not echo it as it is typed.

Just wondering if you've tried the * option?
0
 
debuggerauCommented:
need more info:

What is your domain 2000, 2003 or 2008?
Have you installed the PE service yet?
Have you checked that ADMT 3 is the correct version for your domain?
What do you find in the event logs, but more importantly, what is the error your experiencing?
0
 
PC4N6Author Commented:
it is a 2003 domain...I am trying to install the PE service, but I can't create the encryption key...yes v3 is what I need...never gets to the event logs b/c I cant get the key set.  I get an error in the command line that says the syntax is wrong, but I am doing it exactly like the microsoft manual says...
0
 
imjohnwuCommented:
Install the ADMT v3.1 on a member server on the Target Domain.  After running the command, copy the encryption key file to a Domain Controller on the Source Domain and where the PES program called "pwdmig" is executed from.

Note the spaces are replace with "^"

C:\Windows\system32>admt^key^/option:create^/sourcedomain:lc^/keyfile:"c:\key\pes_encryption_key"^/keypassword:Pa$$w0rd

The password export server encryption key for domain 'lc' was successfully creat
ed and saved to 'c:\key\pes_encryption_key.pes'.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.