Once Trust is in place
Open Administrators Group in the Source Forest , Add Administrator of the Target Forest to acquire proper Permissions
Vice Versa
Open Administrators Group in the Target Forest , Add Administrator of the Source Forest to acquire proper Permissions
otherwise you will end up with Access denied errors while Moving Users back and forth
Once permission part is done
We have to configure a Password Export Server in the source domain to allow exporting the passwords to the Target domain
If your Source Domain DC is running a 64 bit Version
Password Export Server version 3.1 (x64)
If your Source Domain DC is running a 32 bit Version
Password Export Server version 3.1 (x86)
Choose Next
Before you choose next , We need to create a password Encryption file from the Target Domain
Reference –
Enabling Migration of Passwords
http://technet.microsoft.com/en-us/library/cc974435(v=ws.10).aspx
Open a Command Prompt where ADMT is installed on the Target Domain , Run the Below Command to Create a .pes file
admt key /option:create /sourcedomain:<SourceDomain> /keyfile:<KeyFilePath>
Once the File is Created on the Target Domain , Bring the File to the Source domain and Browse for the file
Click Finish
Reboot the Server to complete the installation
Start the “Password Export Serve Service”
Now Open ADMT , Choose User Account Migration Wizard
Choose Source Domain and Target domain
Now Select users
Choose the Target OU
Choose Migrate Passwords
Choose Target Same as source
Choose Migrate User SIDS to Target Domain
Type User name and Password of the Source domain
Choose Next
Choose Next
Choose Next
Great !!
Now Users with SID and Password have been migrated across forest (Cross forest) Successfully
Original Post:
No comments:
Post a Comment