Migrate servers between domains

Similar Messages

• Migrating multiple domains with same name - how? Rename? Migrate through temporary domain?

  Hi,
  we have acquired another company, and they have multiple, separate domains with the same name (every site has a domain with NetBIOS name "COMPANY" and DNS name "company.local"). Now we want to migrate all these domains into ours using
  ADMT.
  Unfortunately, we did not manage to migrate one of these domains completely, so the trust must remain established for some time. But we have to continue with the second domain - which normally would require a trust, but of course we can't establish a trust
  to two domains with the same name at the same time.
  I found two potential solutions for the dilemma, but I'm not sure if both are reasonable:
  1) Rename the domain with RENDOM.EXE to COMPANY2 and company2.local and then migrate with ADMT
  2) Migrate COMPANY to a temporary domain such as COMPANYTEMP and then migrate from COMPANYTEMP to our domain
  Given that there are roughly 100 users, 2 domain controllers and 8 other servers, what would be the better approach? Is option 2 possible at all, so would I be able to use the sidHistory attribute migrated from the original COMPANY domain in our domain at
  all?
  There is also an Exchange 2007 server, which seems to make option 1 impossible unless we find another way to migrate it (like, export all mailboxes to PST before migration) ...

  Ok, that's what I expected. Still, I have servers in the old domain, so if I do these steps:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  disconnect the domain COMPANY(right) ,
  users will lose connectivity to any servers in the domain. I understand that it does not work with all domains connected? Of course I can't make OURCOMPANY's domain controllers see the DCs of COMPANY (right) in DNS (though I could achieve it the other way
  round).
  My original plan was:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  create trust between OURDOMAIN and COMPANYTEMP
  then do the migration with sidHistory from
  COMPANYTEMP --> OURDOMAIN,
  Migrate users
  Migrate computers
  Migrate servers
  remove trusts and old domain
  But I see that this will not work out, right? So, my only option would be:
  first create a new temporary domain i.e COMPANYTEMP and
  create trust between COMPANYTEMP -
  COMPANY(Right)
  then do the migration with sidHistory from COMPANY(right) --> COMPANYTEMP ,
  Migrate computers and servers to COMPANYTEMP
  Install new Exchange server in COMPANYTEMP
  migrate mailboxes to COMPANYTEMP
  disconnect / abandon COMPANY(right)
  create trust between OURDOMAIN and COMPANYTEMP
  then do the migration with sidHistory from COMPANYTEMP
  --> OURDOMAIN,
  Migrate users
  Migrate computers
  Migrate servers
  Migrate mailboxes
  remove trusts and old domain
  And to minimize user impact, all this would have to be done in one go (over night), which is hardly possible .........................

• Issue in SQL-server migration to new domain

  Hello,
  I have a scenario, where i need to migrate SQL 2005 servers db's ( around 30, small ones) to new server in a new domain. Destinationserver is 2012 R2, running SQL2014
  Domains have trust between them, and users have already been migrated to new domain. Users are using the databases with NT authing from the new domain (new logins & users have been created to old sql-server).
  I have backed up db's from old server and restored them in new server. After that, i restored logins with following article's script:
  http://support.microsoft.com/kb/918992
  I cleaned from the login script logins that are not in use, change the domainname to new in CREATE LOGIN phase (for the users who did not have already login from new domain) and the script ran without errors.
  User Mappings are like they should be on logins, however, the user & schema names are indicating to old domain. If i try to change them, i receive error about SID mismatch. This affects also users, who have already had new logins for new domain, their
  usernames on mappings are also changed to old domain's username. What is causing this?

  Hi,
  Could you try the following to migrate the logins and check the result?
  1. You may drop all the windows login. Modify the script generated by sp_help_revlogin step and replace create login
  to drop login.
  2. Use the script generated by sp_help_revlogin step to create
  Logins. Modify login name to accommodate new domain name.
  3. Grant server level roles using the output from:
  Generate Server level role related info :
  SELECT 'EXEC sp_addsrvrolemember ''' +
  p.name + ''' , ''' + r.name + ''';'
  FROM
  sys.server_principals r
  INNER JOIN sys.server_role_members m ON r.principal_id = m.role_principal_id
  INNER JOIN sys.server_principals p ON
  p.principal_id = m.member_principal_id
  WHERE
  r.type ='R'
  Sample Output :-
  EXEC sp_addsrvrolemember 'sa' , 'sysadmin';
  4. Map the SIDS using below command for all DB by using ALTER USER. For example:
  ALTER USER [DomainA\UserA] with login = [DomainB\UserA]
  See:
  http://blogs.technet.com/b/mdegre/archive/2011/06/27/can-i-move-sql-server-to-another-domain.aspx
  Here some useful articles:
  http://www.databasejournal.com/features/mssql/article.php/3922256/Re-generating-SQL-Server-Logins.htm
  http://support.microsoft.com/kb/918992/en-us
  http://support.microsoft.com/kb/240872
  Thanks.
  Tracy Cai
  TechNet Community Support

• Subincacl tool with netapp cifs migration to new domain

  Hello
  I have DomainA (old) DomainB (new).  i am migrating services from DomainA. to DomainB.  i have a netapp filer running CIfS in DomainA.  i have two way trust between two doamins.  All the security groups have been migrated from DomainA
  to DomainB with sid history via Quest tool .  now i need to repermission ntfs on all the shares with DomainB.   I tried usign subinacl tool with following syntax without success
  subinacl /outputlog=c:\output.txt /errorlog=c:\error.txt /subdirectories Z:* /migratedomain=domainA=DomainB=MAPFILE.TXT
  where mapfile has a a mapping of between groups of DomainA and DomainB,  Z is mapped drive to netapp cifs volume
  but it errored out with following
  Last Syntax Error:WARNING : /migratedomain=DomainA=DomainB=mapfile.txt : Invalid option : Z:\*

  Hi,
  Do you run the command from an elevated command prompt? Verify you have proper permission for the mapped drive. Please use the following version of SubInACL.
  http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=23510
  For domain migration:
  SubinAcl /noverbose /subdirectories x:\*.* /changedomain=DomainA=DomainB
  For server migration:
  SubinAcl /subdirectories \\Destserver\Share\*.* /migratedomain=SourceServer=DestServer
  Best Regards,
  Aiden
  Aiden Cao
  TechNet Community Support

• Domain Migration :from single domain to multiple domain.

  Hi ,
  We have an urgent requirement for the domain migration
  The scenario is currently we are using MS AD as LDAP server to store portal users and thier credentials.
  Lets say we have current domain name as : ad.abc.com
  we are planning to migrate from this domain to number of domains.our requirement is to move the portal users into thier specific domain in batches.eg out of 5 users 2 has been moved to new domain and other 3 are still in ad.abc.com.
  But after domain migration ,all the 5 users <b>should</b> be able to access all the applications and functionality of portals.
  What should we do to achieve the same?
  How portal applications will be affected by this?Can all the users access all applications without fail?
  What exactly the LDAP does in portals?
  Any help will be greatly appreciated
  Thanks in Advance
  Amit

  Hi,
  Yes, you need to prepare Active Directory and domains.
  What's more, you need to upgrade existing Exchange 2007 servers to Exchange 2007 Service Pack 2 at least.
  Here is an article for your reference.
  Exchange 2007 - Planning Roadmap for Upgrade and Coexistence
  http://technet.microsoft.com/en-us/library/dd638158(v=exchg.141).aspx
  Hope it helps.
  Best regards,
  Amy
  Amy Wang
  TechNet Community Support

• Domain migration: From single domain to Multiple

  Hi ,
  We have an urgent requirement for the domain migration
  The scenario is currently we are using MS AD as LDAP server to store portal users and thier credentials.
  Lets say we have current domain name as : ad.abc.com
  we are planning to migrate from this domain to number of domains.our requirement is to move the portal users into thier specific domain in batches.eg out of 5 users 2 has been moved to new domain and other 3 are still in ad.abc.com.
  But after domain migration ,all the 5 users should be able to access all the applications and functionality of portals.
  What should we do to achieve the same?
  How portal applications will be affected by this?Can all the users access all applications without fail?
  What exactly the LDAP does in portals?
  Any help will be greatly appreciated
  Thanks in Advance
  Amit

  Hi,
  Yes, you need to prepare Active Directory and domains.
  What's more, you need to upgrade existing Exchange 2007 servers to Exchange 2007 Service Pack 2 at least.
  Here is an article for your reference.
  Exchange 2007 - Planning Roadmap for Upgrade and Coexistence
  http://technet.microsoft.com/en-us/library/dd638158(v=exchg.141).aspx
  Hope it helps.
  Best regards,
  Amy
  Amy Wang
  TechNet Community Support

• Bug: _global vars between domains

  Hey
  I submitted a bug report on _global variables, and i just
  wanted to hear your opinions.
  Scenario 1
  1. MovieA loads MovieB from SAME domain
  2 Both MovieA and MovieB contain a _global variable
  Comclusion/Result:
  Both MovieA and Movie B adapts the _global variables
  Scenario 2
  1. MovieA loads MovieB from DIFFERENT domain
  2. Both MovieA and MovieB uses
  System.security.allowDomain("*")
  3. Both MovieA and MovieB contains a _global variable
  Comclusion/Result:
  Both MovieA and MovieB CAN NOT access/read eachothers _global
  variable.
  The help file says:
  quote:
  The Flash Player version 7 and later security sandbox
  enforces restrictions when accessing global variables from SWF
  files loaded from separate security domains For more
  information, see Understanding Security.
  I clearly read that as , you should be able to control the
  usage between domains , (just like any other scripting operating
  with domain policy )
  It fails nomatter what, even with
  System.security.allowDomain("*") AND crossdomain.xml policy file.

  Looking to this Oracle Doc >> http://docs.oracle.com/cd/E24329_01/web.1211/e24375/basics.htm#BRDGE128
  "Typical tasks required to manage a messaging bridge using the Administration Console include
  Creating a trusted security relationship. See "Configuring Domains for Inter-Domain Transactions" in Programming JTA for Oracle WebLogic Server"
  And, clicking the link to Configuring Domains for Inter-Domain Transactions, there's two types of communications:
  Inter-domain—The transaction communication is between servers participating in transactions that are not in the same domain.
  Intra-domain—The transaction communication is between servers participating in transactions within the same domain
  Check the rest of the doc to know how to configure each type, and apply the one that matches your case..
  Hope it helps
  Regards,
  Mohab

• How to configure multiple smtp servers per domain

  Hi,
  how do we configure multiple smtp servers per domain/corporate in iplanet messaging server 5.2. i wanted to do this so that i can configure some domains with virus scanning and some domains without antivirus.

  Hi Martin,
  Well we are trying to run a report without exactly specifying the name of reports server anywhere, e.g. in database or in form or anywhere else. Now if I do not supply a reports server name using RUN_REPORT_OBJECT, the error it displays is FRM-41211: Integration Error : SSL failure ... However if I specify the reports server name in the form, the reports run perfect. Also the name of reports server is specified in rwservlet.properties.
  Now the question goes as follows:
  Can I run my report from Form without specifying the name of the Reports server anywhere at all. This is so because either an in-process reports server should be picked or the one which is entered in rwservlet.properties should be pickec up by default. Please correct us if we are wrong. once we are through with it, we have to move to Oracle 10gR2 concept of reports server.
  Thanks in anticipation,
  Ruchi/Saurabh

• Communication issues between domain controllers

  Hi everyone,
  I am experiencing some problems in communication between domain controllers in our organization
  We have three domain controllers, one of them is a Windows 2003 server service pack 2 which is physical (controller A), another which is Windows 2008 Service Pack 2 (controller B), also physical, and a third one (controller C) which is a Windows 2008
  service pack 1 and is virtual.
  I have problems with this last DC, it won't respond to pings, or DNS query. I can't Access it by remote desktop client even when it is enabled. I cannot update it, it prompts error messages if I try to do so.
  This problems are solved if I reboot it, it will work fine some hours or days, but not much longer. I have checked event viewer and I didn't found any message about this.
  I read some time ago it would be great to have a DC in a virtual machine, so I did it, but is it right?
  Do you know what might be going on with it? would depromoting it and seting it up again the best solución?
  Thank you very much.
  Best regards.
  David.

  This sounds like a NIC issue, which is odd since it is a virtual machine.  Have you checked the host for any logs about the client? 
  I think the first thing I would do is destroy the current virtual NIC card and add a new one.  Since this has nothing to do with Active Directory I would also suggest you post this in a forum of for the Host (VMWare or Hyper-V).
  Paul Bergson
  MVP - Directory Services
  MCITP: Enterprise Administrator
  MCTS, MCT, MCSE, MCSA, Security, BS CSci
  2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
  Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
  Please no e-mails, any questions should be posted in the NewsGroup.
  This posting is provided AS IS with no warranties, and confers no rights.

• I'm gonna to change machine. how can I migrate license between old to new PC? (creative cloud)

  how to switch license if I buy a new computer?
  sorry for my english

  thanks
  2014-11-14 0:23 GMT+01:00 Jeff A Wright <[email protected]>:
      I'm gonna to change machine. how can I migrate license between old to
  new PC? (creative cloud)
  Jeff A Wright
  <https://forums.adobe.com/people/JeffAWright?et=watches.email.outcome>
  marked John T Smith
  <https://forums.adobe.com/people/JohnTSmith?et=watches.email.outcome>'s
  reply on I'm gonna to change machine. how can I migrate license between
  old to new PC? (creative cloud)
  <https://forums.adobe.com/thread/1633443?et=watches.email.outcome> as
  helpful. View the full reply
  <https://forums.adobe.com/message/6923056?et=watches.email.outcome#6923056>

• Migrating from 2003 domain/forest level to 2008R2 with all DC's at 2008R2 and 2 other Domain External and Forest Trusts

  Is there anything that needs to be done or considered when migrating from 2003 domain/forest level to 2008R2 with all DC's at 2008R2 with 2 other 2003 separate Domain incoming
  and outgoing Trusts, one Trust that is a Forest Trust and the other is an External Trust? Is there any chance or risks that doing this upgrade will break either one of these Trust relationships? Some of the user accounts with SID history have been migrated
  from both Domain Trusts to our domain. Any chance that this upgrade will break these relationships for users that are using SID history for access to folders and files in their old Domains? If so what can be done to protect these trusts and SID history, prior
  to moving the Domain to 2008R2

  Hi,   
  Based on my knowledge,
  the Upgrade of the function level do not affect the trust relationship.
  Besides, before you upgrade the Functional Level,
  verify that all DCs in the domain are, at a minimum, at the OS version to which you will raise the functional level.
  Once the Functional Level has been upgraded, new DCs on running on downlevel versions of Windows Server cannot be added to the domain or forest.
  For more information about function level, we can refer to following links:
  Understanding Active Directory Domain Services (AD DS) Functional Levels
  http://technet.microsoft.com/en-us/library/understanding-active-directory-functional-levels(v=ws.10).aspx
  What is the Impact of Upgrading the Domain or Forest Functional Level?
  http://blogs.technet.com/b/askds/archive/2011/06/14/what-is-the-impact-of-upgrading-the-domain-or-forest-functional-level.aspx
  Best Regards,
  Erin

• Migrate VM between clusters added to the same SCVMM

  Is it possible to migrate VMs between two Cluster ( from 2012 SP1 cluster to 2012R2 cluster) that added
  to the same SCVMM?

  Yes this is possible. Make sure that the networks selected for live migration is available on both clusters, and that the name of the logical switch in both environments are identical.
  The key here is that VMM must be managing both environments.
  -kn
  Kristian (Virtualization and some coffee: http://kristiannese.blogspot.com )

• Problem creating external trust between domains

  Hello,
  When I try to create one-way incoming external trust between 2 domains (to DomainA from DomainB) in separate forests I get this info:
  This domain already has a one-way trust relationshp with specified domain.
  But I cannot see it on the list of trusts either incoming or outgoing (in both domains).
  For sure trust was never setup before.
  In DomainA there are several other external not transitive trusts with other domains. But for sure DomainB do not have any incoming or outgoing trusts on list. Name resolution betwen domains is OK. I can ping domain name on both sides.
  Any help is welcome.
  Darek.

  Hi,
  Were there error events logged in Event Viewer? Besides, did we open necessary firewall ports for creating external trust?
  Regarding firewall ports, the following thread can be referred to for more information.
  Creating external trust between domain on different forest
  http://social.technet.microsoft.com/Forums/en-US/efe56730-ff95-4d6b-b95c-fc2c01ebd2d3/creating-external-trust-between-domain-on-different-forest?forum=winserverDS
  Best regards,
  Frank Shen

• Mails between domains

  Hi,
  We have a scenerio where we are to use different domains for every new env we create. So using Collabsuite, is it possible to mail from [email protected] to [email protected] ?
  I have created xyz in the domain env1 and abc in domain env2, but when I use web client to mail from one to another, the mail is simply lost !
  Any pointers as to where/how I can trace this if it is possible to mail between domains.
  Thanks
  Arvind

  That's not a problem, just verify the domains and set the domain purpose as Exchange Online. As those will be in the same Exchange organization, there is no need to configure anything else in order to be able to share calendar or contact information between
  users.

• Shared between domains

  Hi,
  I need an exchange online infrastructure with three different authoritative domains and i want to share calendar and contacts between domains.
  Is possible?
  Thanks.
  Riuda

  That's not a problem, just verify the domains and set the domain purpose as Exchange Online. As those will be in the same Exchange organization, there is no need to configure anything else in order to be able to share calendar or contact information between
  users.