elaw
asked on
Consolidation of two Windows Active Directory domains
Greetings!!!
I have two separate domains (a.domain.com, b.otherdomain.com) and would like to consolidate to one domain to become everyhting a.domain.com.
Both domains are Windows 2003, and not connected to each other. There is only one Exchange server which is running in a.domain.com. I would like to bring all the users, security groups, desktop, servers and anything related to a.domain.com.
I would like to know the best steps to take to get this done. I believe I need to create a trust between the two domains. Also do I need to have a site to site VPN or if I bring one DC from the b.domain.com and then do the trust relationship or single VPN connection.
Any pointers much appreciated. Thanks-
I have two separate domains (a.domain.com, b.otherdomain.com) and would like to consolidate to one domain to become everyhting a.domain.com.
Both domains are Windows 2003, and not connected to each other. There is only one Exchange server which is running in a.domain.com. I would like to bring all the users, security groups, desktop, servers and anything related to a.domain.com.
I would like to know the best steps to take to get this done. I believe I need to create a trust between the two domains. Also do I need to have a site to site VPN or if I bring one DC from the b.domain.com and then do the trust relationship or single VPN connection.
Any pointers much appreciated. Thanks-
I missed the part about they're not connected to each other.
If isolated network segments that can't be routed, it's true that you nead to connect them with a VPN tunnel.
If on same network and can reach the other with ping IP-address, but can't resolve the other domain because of separate DNS namespace, it's enough to configure conditional forwarding between the two domains.
If isolated network segments that can't be routed, it's true that you nead to connect them with a VPN tunnel.
If on same network and can reach the other with ping IP-address, but can't resolve the other domain because of separate DNS namespace, it's enough to configure conditional forwarding between the two domains.
ASKER
Does it require a site to site VPN or we could have a single VPN connection from one of the DC in either site.
Create a secondary zone in dns of b.domain in domain A and vice versa.After this you can follow the ADMT guide mentioned above and follow the steps.
ASKER
When we acquired this domain b company, we did not complete the merge due to multiple reasons. Now we have to complete the merge. we created the user accounts for domain b users in our existing domain a for the emails. These users are still using domain b credentials for accessing the infrastructure domain b. They have been accessing email using webmail.
Now the scenario is that we need to migrate the following:
1. Servers - should not have any issue
2. PC's - should not have any issue
3. Services accounts - should not have any issue
4. User accounts - This is the confusion part because both domains have user accounts for each person. How we will handle this.
I think we should also migrate the users from domain b into domain a. And associate their domain b account to their mail boxes.
If there is a confussion in defining the scenario please let me know.
Thanks
Now the scenario is that we need to migrate the following:
1. Servers - should not have any issue
2. PC's - should not have any issue
3. Services accounts - should not have any issue
4. User accounts - This is the confusion part because both domains have user accounts for each person. How we will handle this.
I think we should also migrate the users from domain b into domain a. And associate their domain b account to their mail boxes.
If there is a confussion in defining the scenario please let me know.
Thanks
ASKER
Hey henjoh09:
The link you have provided me is for windows 2008. Will it work 2009. Please let me know. Thanks
The link you have provided me is for windows 2008. Will it work 2009. Please let me know. Thanks
ASKER
Literally speaking what things we need to be careful duing this type of migration.
henjoh09: provided a link for ADMT guide but if there is any practical guide for this kind of migration.
henjoh09: provided a link for ADMT guide but if there is any practical guide for this kind of migration.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
One thing to clarify. There is no duplication
UserA has two accounts in domain a and domain b
But UserA has different username in each domain. So there is no duplication.
So what I m thinking is to migrate these users and associate the migrated users to the email boxes for each users.
There are only 40 mail boxes. It should not have an issue. What do you think
UserA has two accounts in domain a and domain b
But UserA has different username in each domain. So there is no duplication.
So what I m thinking is to migrate these users and associate the migrated users to the email boxes for each users.
There are only 40 mail boxes. It should not have an issue. What do you think
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
mailboxes migration is not required becuase the mailboxes already created in domain a for domain b users and they are using it.
But as mentioned earlier. User A has accounts in both domain a and domain b.
domain a accounts for mailboxes
domain b accounts for file access and other services
What i was suggesting that we will dump the domain a account for each user and migrate the accounts from domain b and assocate the mailboxes with the user accounts migrated from domain b.
But as mentioned earlier. User A has accounts in both domain a and domain b.
domain a accounts for mailboxes
domain b accounts for file access and other services
What i was suggesting that we will dump the domain a account for each user and migrate the accounts from domain b and assocate the mailboxes with the user accounts migrated from domain b.
Sorry for the delay as I thaught I already had folled up your last followup. I must had missed to click submit...
If it was just file servers in domainB, I think the migration with keeping the users in domainB instead of domainA would be a slightly more job to do than keeping the domainA users and changing the file server permissions when moving the file server from domainB. What more services than file servers will be moved from domainB?
Use ADMT (the guide has step by step instructions) to move the users/computers from domainB to domainA, disconnect the mailbox from userA and reconnect it to its new user.
If it was just file servers in domainB, I think the migration with keeping the users in domainB instead of domainA would be a slightly more job to do than keeping the domainA users and changing the file server permissions when moving the file server from domainB. What more services than file servers will be moved from domainB?
Use ADMT (the guide has step by step instructions) to move the users/computers from domainB to domainA, disconnect the mailbox from userA and reconnect it to its new user.
ASKER
Thanks Henjoh09. I will read this and let you know
ASKER
resolved
Downloadable ADMT
http://www.microsoft.com/downloads/details.aspx?familyid=AE279D01-7DCA-413C-A9D2-B42DFB746059&displaylang=en
Downloadable guide
http://www.microsoft.com/downloads/details.aspx?familyid=6D710919-1BA5-41CA-B2F3-C11BCB4857AF&displaylang=en