All,
Just finished the migration, demoted the SBS2011 and turned off. However the users are still in the old SBS groups and computer areas on the new server. And I joined a 2 NEW laptops to the domain and the users do not have access to the netlogon folder to run the script.
When mapping a drive manually, it will NOT reconnect until the user re-authenticates. Once user types in user ID and pass, the mapped drive appears again.
Another issue I ran into is the security group "Authenticated Users" is missing and when I try and create it - it states it's already there.
Anyone run into this type of scenarios during their migration?
Thanks in advance!
Mike
A migration of the AD means that an exact copy is made on the new Domain Controller, a replica. This means that the structure you had on the old SBS will also be on the new server. Don't change that.
Missing netlogon and sysvol means something did not replicate. At the beginning (chapter 1. step 7) of the migration guide, we told you to check the SBS for Journal Wrap issues, see Understanding Active Directory Health during an Active Directory migration and tools you can use like repadmin and dcdiag. Did you do that?
In chapter 9. step 8 we explain that you must have a shared Netlogon and Sysvol. Apparently you did not do that otherwise you would not have the issue you have now.
Can you check the DFS log for possible clues why this is happening?
Netlogon and Sysvol is not missing. I did that verification process during the migration. What I did NOT check was permissions on the Netlogon folder. The permissions were incorrect.
I followed the instructions to a tee as I am very OCD about instructions.
Another item I found today was some of the clients had hard coded DNS entries and was pointed to the old SBS server. (That fixed 60% of the issues with those clients)
Still working out other minor issues. Thank you for the reply and answers. Will look into the DFS log.
Another different question I have is can I start removing all the SBS security groups and so forth? Move all the computers/users over to the main users/computers orgs? That might be part of the clean up you have at the end of the migration documentation like the DNS etc...
We do not think it is a good idea to change the OU structure and deleting Security Groups. I would not do that and leave everything as they are. If you change the OU structure you will also need to change the behavior where a user or computer is put by default, they now default to the OU's in the Mybusiness structure. Changing that is purely cosmetic. It can be changed but why would you?
Do not delete security groups as they might be used in a way that affects your server/network in a way you don't expect.
Your browser doesn't have Flash, Silverlight or HTML5 support.