Alex Bolla
asked on
Password Migration encryption key
I am trying to do an AD migration to another domain. I am trying to create the encryption key for the password migration. I am using ADMT v3. Here is what I have typed that keeps getting errors.
at command line:
admt key /option:create/sourcedomai n:a.local/ keyfile:c: \\migratio n/keypassw ord:xxxxx
can someone please tell me why this is not working and what I need to do to correct this problem?
at command line:
admt key /option:create/sourcedomai
can someone please tell me why this is not working and what I need to do to correct this problem?
ASKER
it is a 2003 domain...I am trying to install the PE service, but I can't create the encryption key...yes v3 is what I need...never gets to the event logs b/c I cant get the key set. I get an error in the command line that says the syntax is wrong, but I am doing it exactly like the microsoft manual says...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Install the ADMT v3.1 on a member server on the Target Domain. After running the command, copy the encryption key file to a Domain Controller on the Source Domain and where the PES program called "pwdmig" is executed from.
Note the spaces are replace with "^"
C:\Windows\system32>admt^k ey^/option :create^/s ourcedomai n:lc^/keyf ile:"c:\ke y\pes_encr yption_key "^/keypass word:Pa$$w 0rd
The password export server encryption key for domain 'lc' was successfully creat
ed and saved to 'c:\key\pes_encryption_key .pes'.
Note the spaces are replace with "^"
C:\Windows\system32>admt^k
The password export server encryption key for domain 'lc' was successfully creat
ed and saved to 'c:\key\pes_encryption_key
What is your domain 2000, 2003 or 2008?
Have you installed the PE service yet?
Have you checked that ADMT 3 is the correct version for your domain?
What do you find in the event logs, but more importantly, what is the error your experiencing?