Active Directory Migration user impact

Tam DK 21 Reputation points

Good day, I am trying to understand what could go wrong on the day of migration so I can communicate this to my stakeholders as a worst case scenario. Basically, how could a user be impacted after migration. For example, user cannot login, their email doesn't work, an application does not work... any further input from the forum would be greatly appreciated. Thank you.


Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,768 questions
{count} votes

Accepted answer
  1. Simon Burbery 546 Reputation points

    Quest is great - make sure trust relationship and DNS forwarding are set up correctly between target and source domains, and enable SID history... this allows the migrated users to access resources in the source domain seamlessly until you have moved all resources over to the new domain.
    While Quest can handle the workstation migration, I've long been in the habit of using ProfWiz.exe for the workstation migrations. It is so simple to use and leaves the user with exactly the same profile in the new domain. I have never had a failure using this tool, and quite often the user barely notices they are logging into new domain.

    Give the users plenty of notice so they know what is happening... but there should be minimal issues if you have set up the trust, DNS and Quest correctly.

    With the pilot, it is a critical to capture sufficient cross-section of users so you can cover off testing of all core apps and iron out any niggles before the main migration.

    Things that can may cause issues:

    • DNS resolution (should be okay if forwarding is correctly configured)
    • User or machine certificates required for resource access in source domain (Wi-Fi, user certs for app auth etc.)

    Good luck!

1 additional answer

Sort by: Most helpful
  1. Tam DK 21 Reputation points

    Hi Simon, AD to AD using Quest. Yes we will run a small pilot first.

    0 comments No comments