Ali_Junior
asked on
ADMT password sync
Hi,
I'm currently in the progress of an AD migration from our current domain in Win2k3 to a new domain Win2008. We have scripted the user account migration. Migration is on-going and we noticed that at times after we have migrated the user and password, user has not logged in to the new domain but at the same time changed their password in the old domain. Thus when wanting to log in to the new domain, the passwords do not match.
I have searched for scripts to do this, but yet to find any. The only way so far is to remigrate the accounts as it will also migrate the password. Is there a way this can be scripted without doing it manually via the GUI.
Thanks in advance.
Arif
I'm currently in the progress of an AD migration from our current domain in Win2k3 to a new domain Win2008. We have scripted the user account migration. Migration is on-going and we noticed that at times after we have migrated the user and password, user has not logged in to the new domain but at the same time changed their password in the old domain. Thus when wanting to log in to the new domain, the passwords do not match.
I have searched for scripts to do this, but yet to find any. The only way so far is to remigrate the accounts as it will also migrate the password. Is there a way this can be scripted without doing it manually via the GUI.
Thanks in advance.
Arif
ASKER
Hi Dan,
We are not disabling the account at the old domain, as we are running it parallel for the moment as users are still accessing resources at both domains. We'll have a hard date for the actual cut over. But at the same time we'd like to sync up passwords for both domains. Is it possible to be done via a daily script recon job or something like that? Thanks
We are not disabling the account at the old domain, as we are running it parallel for the moment as users are still accessing resources at both domains. We'll have a hard date for the actual cut over. But at the same time we'd like to sync up passwords for both domains. Is it possible to be done via a daily script recon job or something like that? Thanks
I don't know how you can do the sync job, but when you migrate one account to the new domain you can use SSID history to go back in the old domain. We using same thing on ours multidomain to one migration plan and works excellent. Of course you can test that only on the new migrate accounts with this option.
Dan
Dan
ASKER
I'm not sure if this will actually help. What I'm trying to achieve is that we can sync the passwords only from the old domain to the new domain on a daily basis. This is to cater to any change of passwords of the accounts in the old domain, so that it can be the same as the new domain. So that when the final cut over is done, users' password will be same as the old domain.
What I found so far are only account migration, which will take up more resource. What I would like to achieve is something like the GUI version where it allows password migration, but instead of GUI, i'd like it via script so that I can schedule daily batch jobs that will do sync jobs for all accounts in the domain.
What I found so far are only account migration, which will take up more resource. What I would like to achieve is something like the GUI version where it allows password migration, but instead of GUI, i'd like it via script so that I can schedule daily batch jobs that will do sync jobs for all accounts in the domain.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
did you try to disable old account at the migration?
Dan