Thursday, April 25, 2013

Active directory users / computer Migration Check list ,,,

I found the below on NASA website somewhere , but I have modified a lot of the contents and added more questions to Help me in Migration , once I finish the process I will update my experience and how I did it:




Active Directory Pre-Migration Checklist
 Domain Information Worksheet:
Prepared by: Ahmad Sabry El Gendi

  1. What is your domain type? (NT 4.0, WIN2K, 2003 , 2008 ?) __________
  2. How many domain controllers are in your Main sites and Branch sites? ________
  3. What are the names of your domain controllers?
    Main site:_____________________
    Branch sites:_____________________
  4. Should user accounts ,service accounts or computer accounts be migrated or will they be recreated?
  5. Can you provide test machines (or virtualized VM) of every critical Operating system /service that you currently have in your domain for testing ? __________________________
  6. Can you provide lab verification virtualized environment to authenticate each Application  / service that you currently have in your Branch domains for testing ? __________________________
  7. Does your Backup system (Which vendor?) cover all your Branch site Domain Active directory and / or application? what is the restore time window ?
  8. How long down time allowed for service out of working hours ?
  9. Do you have verification check list to confirm all the  services running after migration ?
  10. Do you mind to install Manage Engine Audit Plus for each Branch Site Domain Controller to collect as much as information for logged on user source / destination servers / workstations ?
  11. Do your domain controllers (Main site & Branches) run any enterprise applications ? Do they authenticate against any of Active directories ?  _________
  12. What enterprise applications do you run in your domain? ___________________________
  13. Does any enterprise applications (or service accounts or configuration files or services login as) authenticate through the Branch Domain controllers?
  14. Do you have any MS Cluster Servers , NLB , Exchange DAGs or SQL in Branch site domain? _______
  15. Is there any non-windows infrastructure is integrating or authenticating against any branch Domain?
  16. Do you have any VPN , published services , or third party suppliers software authenticate against your any of your branch Active directory Domain ?
  17. Do you currently have Microsoft Exchange dedicated for your Branch site Domain? _____________
  18. How are your Branch site users E-mail accounts configured with Exchange ?
  19. Would you please give a small summary about how your Mail system configured in multiple sites ?
  20. Is each Branch site Domain has its own Exchange ? or all  users belong to main site Mail system ?
  21. Do any user in Branch site Domain has PST outlook files or archive in local PC ?
  22. Is there any user data (NOT Settings) are stored with user local profiles ?
  23. Do you have any policies in place in Branch site Domain? _______ If so, please explain the function:____________________________________________________
  24. How many login scripts do you have in Branch site Domain? ______ If so, please explain the function:____________________________________________________
  25. How many file or print servers do you have in Branch site Domain? _______
  26. Is File and Printer Sharing for Microsoft Networks turned on, on all of your computers (workstations and servers) that will be migrated?______________________
  27. Is there any file server or mapped drives in workstation or member servers or domain authenticating in Branch site Domain ?
  28. are there any cross forest shares with cross branch site share permissions?
  29. Is there any client workstations sharing any production files with cross forest permissions ?
  30. Do you have any application or licenses relay on user or computer Account SID in Branch site Domain?
  31. How many active users in each branch (User Accounts) do you have in your domain that need to be migrated? __________­­­­­­
32.  Is there any application configured to use Branch site Domain groups for permissions ?
33.  Is there any Branch site Domain accounts are added in local member server in any of Branches ?
  1. Will users /computers that have been inactive / disabled be migrated ?
  2. How many groups are in your domain? _______
                                   (Complete table below)
Group Name
Local
Global
Universal
Has cross forest membership ?
 










  1. How many active computers are in your Branch site Domain? __________

  1. What Operating Systems are utilized within in your Branch site Domain? Please list all:
    __________________________________________________________
  2. Do you have any firewalls in your environment that may prevent proper communication during the migration? _________________
  3. Will you be able to provide additional Back-up Domain Controller while migration in process? ______
  4. Are you currently running any Microsoft Certificate Authorities? _________
  5. Do you have any application using LDAP and authenticating based on OU structure ?
  6. Do you have any backup software dedicated for branch sites and authenticating via its Domain Controllers  ?
  7. Is there any service account used in Proxy , antivirus , IIS or sharepoint authenticating against branch sites Domain Controllers ?
General Comments or Concerns: ________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________________


Posted by at No comments:
Subscribe to: Posts (Atom)