Solved

Active Directory Migration

Posted on 2014-04-27
2
179 Views
Last Modified: 2014-08-18
If I had users in a single forest called domain.com and that business wanted to become completely separate and create a brand new forest with domain.com, what is the best way to export and import the accounts? Can you also export OU's and GPO's??

Its a windows 2008 environment. Could we also use 2012 on the new environment and import Users, OU's and GPO's?
0
Comment
Question by:monarchit
2 Comments
 
LVL 35

Expert Comment

by:Mahesh
ID: 40025982
You can use Active Directory Migration Tool 3.2 (ADMT 3.2) to migrate your users from source domain to target domain

You can migrate resources from source domain to target domain that is even windows 2012 \ 2012 R2, however you need to use at least one windows 2008 R2 ADC in target forest, because MS has not published new ADMT tool for Windows 2012 \ 2012 R2 and ADMT 3.2 is supported up to 2008 R2 active directory domain controller version only

Also you can use GPMC console for migrating GPOs from source domain to target domain
You can use GPO migration table
There are PowerShell scripts available on internet \ TechNet script Gallery to migrate OU structure OR ADMT also can do that

Check attached file for prerequisites for cross forest migration

Also check below link for ADMT
http://www.microsoft.com/en-in/download/details.aspx?id=19188

Mahesh.
Domain-Migration-Prerequisites.pdf
0
 
LVL 16

Accepted Solution

by:
gurutc earned 500 total points
ID: 40026984
Hi,

Migrating objects using the non-scripted tools has always been a little hairy for us.  We've either used powershell scripts, or more recently for a big move we went with the Quest Migration Tools at Microsoft's recommendation.

- gurutc
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now