Move Users to New Domain from Old Domain

Hey guys,

I require advice on moving users from the old domain to new domain.

My client has only one AD Domain Controller operating on Server 2008 r2. This server is connected to a server 2012 r2 member server with exchange 2013 running off it. Recently the NTDS.dit file on the domain controller got corrupted, and messed their network.

Since the client does not have a backup, I recommended that we get the servers redone.

Therefore I have setup the new servers from scratch using server 2012 r2 and exchange 2013. I have used the same domain name from old setup. All has gone well but I require a piece of advice with moving users from the old domain to the new domain. What tool/utility can i use to move the user accounts from the old DC server to the new DC server.

I am not keen on retaining the SID as this is a completely new setup.

An urgent response shall be appreciated.
Gurvinder BharyaDirectorAsked:
Who is Participating?
Gurvinder BharyaConnect With a Mentor DirectorAuthor Commented:
I've requested that this question be deleted for the following reason:

I manually typed all the accounts on my side.
Niten KumarConnect With a Mentor Principal Systems AdministratorCommented:
Try the repair mentioned by Mikhail above.  if it works then you use Active Directory Migration tools to migrate preserving the SID history using guide below.

If there is no need to preserve the SID then you can use the export and import method with tools such as csvde and LDIFDE utility.  Links below for your readings.
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

Gurvinder BharyaDirectorAuthor Commented:
Good morning all,

Thanks for the hasty response.


I am already beyond repairing as I have tried all alternatives. They have all failed and am in the process of installing a new domain.

Niten Kumar,

Allow me to try and export and import and let you know of the same.

In case it wasn't clear above, the export and import will only work if you're able to repair the AD database. Without at least one operational domain controller, there's nothing to export from.

Unfortunately, it looks like your client, like so many others, is learning a hard lesson about the importance of good backups.
Mikhail SartaevSystem architectCommented:
Users can export windows profile and after create new one -import.
And export outlook profile to pst and import in new one.
Niten KumarPrincipal Systems AdministratorCommented:
You can try the following ntds repair tool.  You can start off with the demo version and if you are able to see objects in your Active Directory database then to repair and save the database, you need to purchase the Full version.
I don't believe this question should be deleted, as an appropriate answer has been given. Mikhail's first comment was correct: this can't be accomplished if no backup of the AD database is available and the only domain controller is permanently offline.

IMO, Niten also provided some useful information, so they should both be given credit.

"This can't be done" is a perfectly valid answer to this question, and the information given in the comments may be useful to someone else in the future.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.