| Author |
Message |
ping
Guest
|
 Posted:
Fri Oct 28, 2005 8:39 am Post subject:
ADMT |
|
|
Hi,
I am new in ADMT. I am testing the ADMT for an upcoming migration
exercise.
Currently there are 2 domain in different forest. One Windows 2K domain
and another Win2003 domain. When I try to use the ADMT's User Account
Migration Wizard, the DNS of the source domain could not be resolved. I
installed ADMT on target migration domain DC.
Currently both domain have DNS server running on the DC(pointed back
using 127.0.0.1). Do I need to modify the DNS server of target domain
to point to the source domain(dynamic update is enabled)?
Thanks. |
|
| Back to top |
|
 |
Guest
|
| Posted:
Fri Oct 28, 2005 8:51 am Post subject:
Re: ADMT |
|
|
I think using forwarders should be enugh. Did you try it?
1. Set conditional forwarding from the target Windows 2003 domain to
Windows 2000 source domain
2. Set forwarding from Windows 2000 source domain to the Windows 2003
target domain |
|
| Back to top |
|
|
Ada Pan [MSFT]
Guest
|
| Posted:
Fri Oct 28, 2005 12:51 pm Post subject:
RE: ADMT |
|
|
Hello,
Under this situation, the easy method is created secondary zone on the DNS
server of each domain.
1- Create a secondary zone on the Windows 2000 DNS server for Windows 2003
domain pointing to the Windows 2003 DNS server.
2- Create a secondary zone on the Windows 2003 DNS server for Windows 2000
domain pointing to the Windows 2000 DNS server.
3- Enable zone transfers to any server on both DNS servers.
For more information about create a secondary zone, please refer to the
following article:
Create a secondary zone: Domain Name System (DNS); Active Directory
Create a secondary zone
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/Opera
tions/0a2369b7-179e-4c63-be4d-e8a99e4f18b3.mspx
Hope it helps.
Regards,
Ada Pan
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
ping
Guest
|
| Posted:
Sat Oct 29, 2005 8:50 am Post subject:
Re: ADMT |
|
|
Hi,
I have created the forwarder for both Windows 2003(Conditional
forwarder) and Windows 2000. I've tested on the Windows 2003 and it is
able to resolve Windows 2000 Server DNS. However, the same error
message "The Specific domain either does not exist or cannot be
contacted(error 54b).
Ada,
Since both domain is the domain forest root, is it possible to create a
secondary zone for DNS?
I got the error "Can't find server name for address 192.168.1.199:
Non-existent domain
Default Server: UnKnown
Address: 192.168.1.199"
What does it mean and how to solve the problem? I have created a
reverse lookup zone, but it still can't retrieve the server name?
Thanks.
----
*** Can't find server name for address 192.168.1.199: Non-existent
domain
Default Server: UnKnown
Address: 192.168.1.199
| Quote: | wt
Server: UnKnown |
Address: 192.168.1.199
Name: wt.topwork.pop
Address: 192.168.1.199
| Quote: | ibmdesk.mossod.sln
Server: UnKnown |
Address: 192.168.1.199
Name: ibmdesk.mossod.sln
Address: 192.168.1.197 |
|
| Back to top |
|
|
ping
Guest
|
| Posted:
Mon Oct 31, 2005 9:51 am Post subject:
Re: ADMT |
|
|
Hi,
source domain: mossod.sln
target domain: topwork.pop
I am now able to use ADMT account migration. I have some problem with
the password migration(pwdmig) though.
I have added the registry key TcpipClientSupport and assigned value 1
to source domain DC(win2k - MOS).
I have ran ADMT KEY command in the target domain DC and save the
password key to floppy. I proceed to install pwdimg DLL package in
source domain(MOS) and ran the ADMT account migration in target domain
to migrate username with password. 2 way transitive trust has already
been created earlier.
I got this message "Unable to establish a session with password export
server. Everyone is not a member of the Pre-Windows 2000 Compatible
Access group in target domain 'topwork.pop' "
I have run the command:
net localgroup "pre-windows 2000 compatible devices" "anonymous logon"
/add
on the Win2003 Server which is the target domain.
Please help. For ADMT, should we run it in target domain DC(logon to
source domain)? I got an error unable to logon interactively.
thanks |
|
| Back to top |
|
|
ping
Guest
|
| Posted:
Mon Oct 31, 2005 9:51 am Post subject:
Re: ADMT |
|
|
Hi,
I think I missed out this. How to make sure verify this?
In the Active Directory Users and Computers snap-in, verify permissions
on the PES server object. The PES requires that the “Pre-Windows
2000 Compatible Access” group has “Read All
Properties” rights on the following object:
CN=Server,CN=System,DC=<domain_name> |
|
| Back to top |
|
|
Ada Pan [MSFT]
Guest
|
| Posted:
Tue Nov 01, 2005 9:51 am Post subject:
Re: ADMT |
|
|
Hello,
It seems that you have resolved the issue of accounts migration by using
ADMT.
To make the thread clean and others benefit from the thread, please open a
new thread to submit your password migration issue.
Regards,
Ada Pan
Microsoft Online Partner Support
Get Secure! - www.microsoft.com/security
=====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
=====================================================
This posting is provided "AS IS" with no warranties, and confers no rights. |
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in