Shulou(Shulou.com)06/01 Report--

What are the steps of ADMT tool for active directory migration? in view of this problem, this article introduces the corresponding analysis and solution in detail, hoping to help more partners who want to solve this problem to find a more simple and easy way.

1. Establish a two-way trust relationship on the target domain.

2. Turn off SID filtering on the target domain

Source domain: old.com

Target domain: net.com

Netdom trust old.com / domain:net.com / quarantine:NO

/ usero:old\ administrator / password:*

3. Arrange ADMT tools on the target domain.

4. Run the command line ADMT KEY on the target domain to generate the .pes file (the password is not the password of the source domain administrator, but the password to protect the pes file)

Admt key old.com c:\ *

5. Copy the .pes file on the target domain to the source domain.

6. Modify the security policy of the domain controller on the target domain and change the audit account management to "success" and "failure". The same is true on the source domain. Run the policy refresh tool when you are finished.

7. Modify a group in "AD users and computers" in the target domain, "Pre-Windows 2000 compatible access" under the Bulitin container, and add two kinds of anonymous login;everyone users to the group.

8. Install the password export tool on the source domain to set the password export, and find the copied .pes file during the installation process. Modify the registry when you are finished, otherwise you cannot use the password export tool.

(1) enable the password export function: change 0 to 1 under the "AllowpasswordExport" key under HKEY Local_machine\ system\ currentcontrolset\ control\ LSA

(2) allow the ADMT tool to access the SAM database: the key value of the new DWORD type under HKEY Local_machine\ system\ currentcontrolset\ control\ LSA, named "Tcpipclientsupport", and set the value to 1. And restart the computer.

9. Use ADMT tools to migrate users and computers in the target domain, and use LDP to monitor SIDHistory.

The answer to the question about the steps of ADMT tool for active directory migration is shared here. I hope the above content can be of some help to you. If you still have a lot of doubts to be solved, you can follow the industry information channel for more related knowledge.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.