Is it possible to migrate FSLogix profiles from one domain to another?

Question

We have a customer with a hybrid AVD solution, user accounts synced with ADConnect to Azure AD. Now we will remove those old domain controllers and only use Azure ADDS. AVD hosts will join that domain instead, and even if the user accounts are the same, they will get new SIDs. This is a problem when we want to reuse the old profiles. Is it possible to overcome this, or do we need to just accept that all users are getting new, empty profiles?

Answer 1

Hello Morten Tollefsen

Welcome to Microsoft Q&A Platform, thanks for posting your query here.

Just checking if your customer is sure about moving to Entra ID Domain services?

Because this comes with many restrictions. Ex, they will not get SSO to AVD itself nor to M365 apps, they won't get Intune Management capabilities etc.

You might be able to manually set the permissions on the new share using icacls or Powershell if you know the SID of each user in advance. Not sure how supported it is but it should be possible. 

Hope this helps.

Answer 2

Hi Morten,

As a workaround you can still let the users "connect" or generate an empty disk/new profile for all, and custom build a quick powershell script that wil copy the old and rename based on the existing "empty" profile ?

As a workaround that could be a solution but you will need to build the logic and delete the existing "empty" disk as there couldn't be two disk object within the same folder.

I would consider Strongly COPY and not cut file as you would have roll-back capabilities.

Even though that assume that you have managed the permission on both folder and file after the copy of it and followed best practices of 1 folder-> 1 disk by end users for ease of it.