J G
asked on
AD Migration
The Company I work for was acquired by another company. I have been tasked with migrating our AD to the new company's AD. Our current AD has 7 OUs, 1 for each physical site. I want to migrate each OU on a separate day, unless conceptually I am off and this will drastically complicate things.
I have used the AD Migration Tool, and successfully migrated a user account. (I will need to do a little PS to move a couple fields for our exchange server at the end of the process)
My question is, what do you recommend the order of events for the migration to be? Our Network storage filer is already on the new domain. If I migrate Security Groups, could I have a set of replicated security groups running on each domain? Do I have to do everything all at once? or can I move pieces over systematically behind the scenes?
1) GPO
2) Security Groups
3)Servers
4)Computers
5) users
6) outside AD syncing to partner vendors (if this even needs to happen, after the migration)
I have used the AD Migration Tool, and successfully migrated a user account. (I will need to do a little PS to move a couple fields for our exchange server at the end of the process)
My question is, what do you recommend the order of events for the migration to be? Our Network storage filer is already on the new domain. If I migrate Security Groups, could I have a set of replicated security groups running on each domain? Do I have to do everything all at once? or can I move pieces over systematically behind the scenes?
1) GPO
2) Security Groups
3)Servers
4)Computers
5) users
6) outside AD syncing to partner vendors (if this even needs to happen, after the migration)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So, as for the security groups, I could have the same security groups running in both domains at the same time correct? Then Migrate users over 1 at a time.
Could you explain more "Let the groups update on each user migration using the ADMT command line tool"
Which objects should I migrate first? was the order I posted correct?
1) GPO
2) Security Groups
3)Servers
4)Computers
5) users
Could you explain more "Let the groups update on each user migration using the ADMT command line tool"
Which objects should I migrate first? was the order I posted correct?
1) GPO
2) Security Groups
3)Servers
4)Computers
5) users
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So if 2 users share the same security group, if I migrate one with the ADMT command line will it break things for the other user that hasn't been migrated yet?
No, it will only update the target domain groups. During migration, you ACL resources with both the source and target SID. After migration, you remove source domain SID.
ASKER