Академический Документы
Профессиональный Документы
Культура Документы
Revision 4.1
Prepared by:
Akos Sandor
1. Introduction _________________________________________________ 2
2. Positioning Statement_________________________________________ 2
3. Overview____________________________________________________ 2
4. Migration Process ____________________________________________ 2
5. Migration Form_______________________________________________ 4
6. Network Information __________________________________________ 4
7. Functional Requirements ______________________________________ 7
8. Preparing for the Pilot ________________________________________ 11
Appendix A – Winzero Migration Tools Transition Process ____________ 12
Preliminary Activities ________________________________________________ 12
Global Changes to Network___________________________________________ 13
Post Migration effort ________________________________________________ 13
Appendix B - Transition Isssues, notes _____________________________ 14
Appendix C - Pilot Testing Criteria _________________________________ 15
Global Changes ____________________________________________________ 15
User Transition __________________________________________________________ 15
Global Groups Transition except Domain Admin group ___________________________ 15
Update Local Groups _____________________________________________________ 16
Update User Share, Directory and File ACLs ___________________________________ 16
Update User Rights _________________________________________________ 16
Exchange Updater________________________________________________________ 17
Update NT Workstation Profiles _____________________________________________ 17
Enabale User Accounts in target Domain ______________________________________ 17
Disable User Accounts in Source Domain _____________________________________ 18
Conduct a Full Backup of all NT Servers ________________________________ 18
After all Transition Sites have been Completed __________________________ 18
Clean-up old User Accounts and Global groups from Source Domain ________________ 18
The purpose of the Migration plan is to outline the process necessary to assist the in a
Windows NT - W2K – W2K3 structured Migration. The content for the process is
gathered throughout the qualification and educational phases of the process.
With these requirements, a transition approach is developed to help get to the end-
state. The scope of a structured pilot will be identified and the transition approach will be
tested based on the requirements. These requirements will be tested through a
structured set of testing criteria throughout the pilot so all of the requirements and
objectives are addressed and tested.
The deliverable will give the results necessary to move the Project Plan forward.
2. Positioning Statement
The structured process outlined in this document would be valued by a Technical and
Economical sponsor.
3. Overview
1. A “Terms of Reference” is created which outlines the project objective, scope, and
assumptions.
2. Define business and technical requirements,
3. Translate these requirements into functional requirements,
4. The functional requirements are separated into mandatory and desirable requirements,
5. Source domain:
6. Target domain:
7. Source sites:
8. Pilot site:
9. Step by step migration process
4. Migration Process
To assist a structured Migration, a defined process has been developed. The following
process can be used as a checklist to work through to the desired end state.
Domain structure,
Location of the Domain’s PDCs,
Number of Servers and workstations,
Workstation types and installed application (desirable),
Domain, Server type and function,
Server hardware specifics (desirable)
Remote offices and speed of communication lines,
Dial-in users (desirable),
Legacy systems and multiNOS systems (desirable).
Understand the Administrative resources in the remote locations,
Understand the mandatory and desirable functional requirements,
Identify a process to test and validate the transition of user accounts based on the
customer’s pilot requirements,
Build the testing criteria required for the Winzero migration tools operator throughout the
pilot,
Determine the duration of the pilot,
Define Winzero’s support throughout the pilot (i.e. SE, Executive sponsor, etc),
Determine pilot obstacles,
Determine the pilot milestones,
Primary and Secondary contact information.
Validate the customer’s identified process against the testing criteria, throughout the
assigned pilot period.
Product Migration is complete
The following questions can be used as a quideline to help work through a structured product
Migration. The best approach is to setup a conference call with the Technical sponsor and
Project Manager, walk through the Migration form with the customer over the phone. The
answers to the form will populate the Migration Plan.
---------------------------------------------------------------------------------------------------------------------------
Organization name:
Contact name:
Date:
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
______________________________________________________________________________
6. Network Information
Please identify the Domain, the server types and their functions within the network.
Please identify the Server CPU, memory and hard disk size. In addition, identify the remaining
space used on the disks and the number of files and directory folders. (The purpose of this
question is to be able to get a rough estimate on the length of time it will take to update the
ACLs)
Server Name Server CPU Memory Installed Logical Drive Used Disk # of files
(MB) Size (GB) Space &
(GB) Directori
es
(1,000)
Please identify the average number of ACE entries for each share, directory and file?
If remote users do exist, please identify the number of remote users accessing the NT network
via RAS dial-in or through other remote connectivity needs? Furthermore, identify the
workstation type and the software application installed.
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
Do you have any legacy systems located in your current network and if so, please identify
below?
Do you have multiple NOSs installed in your current network. If so, please identify which types
of NOS gateway software used and the purpose of the additional NOSs installed.
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
7. Functional Requirements
Please identify your functional requirements for a Domain re-configuration tool? Can you please
specify your mandatory and desirable requirements? Please fill in the chart below.
Overview
Ability to support a proven methodology.
Ability to access the methodology from a
central Web site
Ability to access domain re-configuration
project documentation and value added
tools
Ability to track all migrated project
activity centrally.
Ability to support the project through a
wizard GUI interface.
Reporting
Ability to report to a text file throughout
each stage of the domain re-configuration.
Ability to report the following:
Domains
Computer Accounts
Trust relationships between Domain
Controllers
NT Users
User Properties
Local and Global Group memberships
NT Server Shares
NT Share ACLs
Ability to report to the screen or to a text
file
Ability to report exceptions when objects
are bypassed.
Ability to identify the number of NT disk
objects when they were updated.
Ability to report to a Text file if not
User Stage
Ability to select individual users from a
source Domain.
Ability to select the users by Global
Groups.
Ability to support the following User
global rules:
Description
Profile location
Login Script location
Set the Home Drive ACL
Disable / Enable Target Users
Standardize Home Drive letters
Copy Logon hours
Copy RAS permissions
Ability to un-migrate the target accounts
Ability to append the Home Drive ACLs.
Ability to enable / disable migrated user
accounts.
Ability to track selected users throughout
the whole domain re-configuration
process.
Global Groups
Ability to select individual Global
Groups.
Ability to merge Global Group members.
Ability to add a prefix to the target Global
Groups.
Ability to pre-process the creation of the
Global Groups without effecting the
target state.
Ability to un-migrate the Global Groups
Ability to report on the status of each
stage of the process.
Local Groups
Ability to select servers to update Local
Groups
Ability to append migrated users and
Global Groups to the Local Groups.
Ability to confirm if the operator has
access to the source server.
Ability to pre-process the appending of
the migrated users and Global Groups
without effecting the target state.
Ability to report on the status of each
stage of the process.
Ability to execute the updating process
ACLs
Ability to select servers to update the
ACLs.
Ability to update specific Shares.
Ability to update hidden Shares.
Ability to update root NTFS drive
volumes.
Ability to append the migrated users and
Global Groups to the NTFS File,
Directory and Share ACLs.
Ability to confirm if the operator has
access to the source NTFS volume
Ability to report on the status of each
stage of the updating process.
Ability to execute the updating process
separately from the main application.
Ability to run the updating process in
parallel.
User Rights
Ability to select servers to update the
User Rights.
Ability to append the migrated users and
Global Groups to the Server’s User
Rights.
Ability to confirm if the operator has
access to the source Server.
Ability to report to the display and text
file on the status of each stage of the
process.
Ability to execute the updating process
separately from the main application.
Ability to execute the updating process in
parallel.
Computer Accounts NA
Ability to select the source Computer NA
Accounts.
Ability to add the source Computer NA
Accounts to the target Domain.
Ability to report on the status of each NA
stage of the process.
Ability to enumerate the Workstations NA
and Member Servers into the target
Domain.
Ability to make the appropriate changes NA
to the Workstation and Member Servers
to enumerate to the target Domain,
centrally.
Ability to report on the status of each NA
Workstation Profiles
Ability to update only the migrated users.
Ability to update the Local Profiles on
NT Workstations.
Ability to update the Roaming Profiles on
NT Workstations.
Ability to update the Workstation’s
Registry ACLs,
Ability to have access to the Workstation
with either the source or target Domain
accounts.
Ability to maintain all Profile properties
with either NT account.
Ability to report on the status of each
stage of the process.
The pilot location, will ______. The source domain will be ____ and the target domain will
be ______. The pilot will be executed from the target domain located in ______.
Once the MMT file is created it must be physically verified for accuracy. The user creation
process of the migration will be run using the MMT created for the project
_______________________________________________________________________
_________
_______________________________________________________________________
_________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
________________________________________________________________________________
Preliminary Activities
• Analysis
• Determine the expired accounts, locked accounts, disabled accounts and old accounts
that have not logged in over a certain length of time,
• Determine the service accounts because they will stay in Source Domain,
• Identify Duplicate accounts
• Identify users with dual accounts
• Identify Null passwords
• Check password policies
• Identify Workstations and user association in source domain… on going prior to
migration
• Identify all SQL servers in Source domain
• Identify field service
• Identify Radius Issues
• Identify any Citrix issues
• Identify terminal Server issues
• Identify any unique applications that are tied to the domain name or accounts
• Place All account used for migration into target Domain Admins Global Group;
• Transition source NT users to target Domain using the created MMT and HDR files;
• Transition global groups except the System Global groups (i.e. Domain Admin, Domain
Guest and Administrator) to the target Domain prefixed with CX;
• Update Local groups, ACLs, Profiles and User rights on NT Servers in the source
Domain,
• Using the Remote updater, update the NettApp servers – Local groups, ACLs profiles,
userrights in source domain
• Update the ACLs, profiles, local groups and userrights on the NT workstations in the
source Domain,
• Update Exchange severs in the source Domain,
• Update SQL severs in the source Domain
• Create laptop Updater
• Verify changes have taken in effect,
• Manually update laptops, off line workstations the were missed
• Verify changes have taken in effect,
• Enable all verfied users in target domain and diable source domain accounts run script
to enable users
• Run script to change default logon domain from source to target
• Randomly verify enduser migration with check list
The purpose of this section is to outline the individual tests required for the lab and pilot
testing of the Winzero product. Each sub-section, identifies a number of processes
required to ensure that each component of the transition (i.e. including manual effort and
Winzero tools) will function properly.
The procedures have been broken out for each stage based on the Transition
Processes.
Global Changes
(Assumption: Freeze NT Account creation for 1 week)
User Transition
Deficiencies: _________________________________________________________
_________________________________________________________
_________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
Deficiencies: _________________________________________________________
_________________________________________________________
_________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
_________________________________________________________
_________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
Exchange Updater
Deficiencies: _________________________________________________________
_________________________________________________________
_________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
Deficiencies: _________________________________________________________
_________________________________________________________
Deficiencies: _________________________________________________________
_________________________________________________________
Clean-up old User Accounts and Global groups from Source Domain
Deficiencies: _________________________________________________________
_________________________________________________________
_________________________________________________________