Active Directory Migration

rcarrazco · 2015-08-24T12:57:45.000Z

Hi guys,

Im looking for the best practices on AD Migration…

We have a child domain in which we have all users and groups and the parent domain in which we have computer accounts, (this is because we migrated the child domain from NT to 2003), so now we want to have one domain only.

The parent domain is running Windows Server 2008 R2

What is the best option to migrate all the objects from the child domain to the parent one?

What happens with permissions in our file server? Do I need to apply permissions for these new migrated groups/users manually?

psophos · 2015-08-24T13:04:00.000Z

Active Directory Migration Tool (ADMT), from Microsoft, will be your friend in this case.

learn.microsoft.com

ADMT Guide: Migrating and Restructuring Active Directory Domains

rcarrazco · 2015-08-24T15:29:33.000Z

Thanks I will take a look at it!

Whats happens with file permissions, for example we have this file server let’s say we have a folder called Production in this folder all the users and groups are in the child domain, how do I apply the permissions to the folders for the new groups/users? Do I have to do this manually?

psophos · 2015-08-24T16:54:55.000Z

It’s been so long i can’t actually remember.

Though I think we took the opportunity to look at our group structure and to streamline it to some degree. New groups got created in the target domain, users were added to those groups ahead of time and the groups were added to folders. Then the migration happened and the older groups got removed.

This is something you really should test out yourself. Model your setup and test the migration.