Steps required for Active Directory Migration using ADMT

Inter-Forest Migration Preparation using ADMT
1. Purpose – The purpose of this document is to prepare Source & Target Domains for Inter-Forest Migration
2. Prerequisites –
1. Understanding in Active Directory and DNS.
2. Administrative access is needed on the source domain that is about to be migrated into the Target Domain by creating a user on the source domain that is a member of “Domain Admins” & “Enterprise Admins” that would be used during migration.
3. Communication between the source domain DC & PDC Emulator and Target DC on site & Target PDC Emulator has to be fully open between them all (full IP).
Inter-Forest Migration Preparation
1. Make sure the Target DC on site that is going to be used for Migration has a DNS Server Service Installed.
2. Create an AD integrated conditional forwarder on “target.com” DNS to forward any DNS queries of the source domain to the source domain’s DNS server.
3. Create an AD integrated conditional forwarder on “SourceDomain.com” DNS to forward any DNS queries of “target.com” domain to the Target domain’s DNS server.
4.Verify that there is DNS resolving between the Domains using NSLOOKUP, This test could only take place from the DC’s that are open to each other (refer to “PREREQUISITES”, Section 3).
5. Create a Two Way External Trust between both Domains using a Target Domain Admin User and the Domain Admin user you created on the Source Domain.
6. Create a dedicated Global Group in the OU on the Target domain, which would contain the members of those who would be involved in the migration process of Users/Groups/Workstations/Servers (e.g. Site_Admins).
10. Assign the Migrators Members to the Site_Admins Group.
11. Install the ADMT Software on a member server that is Part of Target Domain (not on the Source Domain member server).
12. Add Target “Domain Admins” group & Site_Admins in to the “Administrators” Group on the server that is running the ADMT.
13. Add Target “Domain Admins” group & Site_Admins in to the “Administrators” Group in the SourceDomain Active Directory.
15. Make sure that on both Domains “Default Domain Controller Policy” -> Computer Configuration -> Windows Setting -> Security Settings -> Local Policies -> Audit Policy -> “Audit Account Management” is set to Audit both Success & Failure.
Steps required for Active Directory Migration using ADMT.

1. Both domains should ping / trace route each other successfully.
2. Necessary network port should be allowed from both domain to create trust
3. Need to create two way domain / forest trust.
4. Need to install ADMT on target domain.
5. After installing ADMT, client needs to provide users list to be migrated.
6. User Migration
7.  In the ADMT snap-in, click Action, and then click User Account Migration Wizard.
8. Select the appropriate options in the User Account Migration Wizard
9. Domain Selection – > Select Source and Target Domain
10. User Selection -> Select User accounts (use an input file if you want to migrate a group of people)
11.  Organizational Unit Selection -> Select target OU
12. Password Options -> Migrate Password
13.  Account Transition Options -> Select appropriate options
14. User Account -> Enter Type the user name, password, and domain of a user account that has administrative credentials in the source domain.
15. User Options-> Select appropriate options
16. Object Property Exclusion-> Select appropriate options
17. Conflict Management -> Select appropriate options
18. Complete the User Account Migration Wizard.
19. When the wizard has finished running, click View Log, and review the migration log for any errors.