Windows 2003 -- Active Directory "Group" report ?

I plan to trash my entire Windows 2003 AD
and create a brand new Windows 2012 AD since
lots has changed and I want to only bring
over the needed items for the 100 users.

 1. Has anyone else trashed an entire DC and rebuilt it ?
 2. How can see something like the below on ONE report ?

--------------------------------------------------------------

GROUP_AC1_RW
  John Doe
  Jane Doe
  Barb Smith

GROUP_AC1_RO
  John Smith
  Jane Smith
  Barb Doe

etc .......
finance_teacherAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Cliff GaliherCommented:
As a consultant, I have been involved with several "scrap and rebuild" projects. Unfortunately I am most often requested to get involved after the decision was made and action taken with unsatisfactory results. It bets escalated and people such as myself are asked to pick up the pieces.

While there are always exceptions and edge cases, I will say for a vast majority of situations, a flat rebuild is only managable for microbusiness sized networks. Think 5 users, one server, very few files, and no custom group policies or ACLs.

Anything larger and there are always undocumented gotchas that cause pain for users and ballooning costs; either for the business paying for the rebuild, or for the IT contractor who quoted a price and needs to honor to it, even as time spent skyrockets.

So for your questions:

1) yes. And never (and I do mean *never*) have I seen anybody happy with the process with a network the size you are talking about.

2) you'd want a good auditing tool for this. In this situation, given your network size, maybe spiceworks or rapidfiretools would be appropriate.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
it_saigeDeveloperCommented:
To add to what Cliff has already stated.  In *most* cases where I have seen unsatisfactory results, it was because the user experience was not taken into account.  Granted, there are plenty of gotcha's like:
1.  Service-based relationships to AD accounts.
2.  File and share ACL's.

But the one that is most often overlooked are the user profile(s) on the local machine.

-saige-
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.