Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies. Only from Platform Scholar.
Solved
Export Groups from old AD (windows 2000) and import into Windows 2012 AD
Posted on 2015-01-23
hi guys
I'm transferring people from an old system on to a new one.
The old domain is on Windows 2000 and I wanted to know how I could export all of the distribution groups and security that exist there and then have them re-imported into the new AD environment on 2012?
Otherwise it would mean having to go in and create things manually!
Thanks for your help
Yashy
I'm transferring people from an old system on to a new one.
The old domain is on Windows 2000 and I wanted to know how I could export all of the distribution groups and security that exist there and then have them re-imported into the new AD environment on 2012?
Otherwise it would mean having to go in and create things manually!
Thanks for your help
Yashy
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3 Comments
Active 4 days ago
If you wish to migrate users, groups and potentially passwords then use ADMT (AD Migration Tools) and move objects across domains.
If that is not what you wish to do then you could use LDIFDE or CSVDE utilities to export the required objects. Refer to following links for more info:
https://technet.microsoft.com/en-ca/library/cc731033.aspx
https://technet.microsoft.com/en-us/library/cc732101.aspx
If that is not what you wish to do then you could use LDIFDE or CSVDE utilities to export the required objects. Refer to following links for more info:
https://technet.microsoft.com/en-ca/library/cc731033.aspx
https://technet.microsoft.com/en-us/library/cc732101.aspx
Hello Yashy,
well you can use the free built-in tool LDIFDE or create a VBScript or a third party tool,
if you want to use LDIFDE tool try the following;
Export Groups (only groups with members) from Source Domain
a. Syntax:
ldifde -f c:\LDIFDE_export\export_Gr
Modify Process:
Search / Replace all exported data sets. Search for old domain name DN and replace with new domain DN. You will have to "massage" the exported data sets to properly format them so they can be used as the import source data sets. The LDIFDE export process adds extraneous carriage return line feeds (0d0a) to the data sets. You will have to remove those with your favorite hex editor.
Import process:
Import Groups members to destination domain
a. Syntax:
ldifde -i -k -f c:\import\export_Groups_WI
Note: All imported users will be disabled. This process does not import user passwords. You will want to run a script that will set the flag to force all users to change their passwords upon initial authentication.
Third party tool;
this tool will help you to export the data from AD only.
http://www.dovestones.com/active-directory-export/
I hope this will help.
Waddah.
well you can use the free built-in tool LDIFDE or create a VBScript or a third party tool,
if you want to use LDIFDE tool try the following;
Export Groups (only groups with members) from Source Domain
a. Syntax:
ldifde -f c:\LDIFDE_export\export_Gr
Modify Process:
Search / Replace all exported data sets. Search for old domain name DN and replace with new domain DN. You will have to "massage" the exported data sets to properly format them so they can be used as the import source data sets. The LDIFDE export process adds extraneous carriage return line feeds (0d0a) to the data sets. You will have to remove those with your favorite hex editor.
Import process:
Import Groups members to destination domain
a. Syntax:
ldifde -i -k -f c:\import\export_Groups_WI
Note: All imported users will be disabled. This process does not import user passwords. You will want to run a script that will set the flag to force all users to change their passwords upon initial authentication.
Third party tool;
this tool will help you to export the data from AD only.
http://www.dovestones.com/active-directory-export/
I hope this will help.
Waddah.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
In this Micro Tutorial viewers will learn how to use Windows Server Backup to create full image of their system. Tutorial shows how to install Windows Server Backup Feature on Windows 2012R2 and how to configure scheduled Bare Metal Recovery backup.…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
Suggested Courses
Course of the Month5 days, 13 hours left to enroll
688 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.