User permissions when moved from one OU of a domain to another OU in another domain?

[PeeluckyDuckee]

To move the user in Active Directory, the user must first be moved to the root level and out of any OU he was previously a member of. So now you want to move him to another domain. When you do the move, using movetree, must he be moved to the root level of the other domain? Or can you specify right there and then with the movetree command what OU he shall be in? And after the move, how would his permissions have changed??

Once I did a movetree, but a message came back saying that the other server is too busy to process request, when the other server was doing absolutely nothing?? Huh?? Anybody ever had that one happen to them before??

Thx.
Plucky

 

[Celeryman]

Well I think in that case the User permisions will be inherited from the new domain OU. If I am not mistaken

 

[Saltin]

User associated data that is not moved during MoveTree operations includes profiles, logon scripts, and users' personal data. Additional scripts or management tools need to be used in conjunction with MoveTree to perform these additional steps. MoveTree enables an organizational unit to be moved with all of the linked Group Policy objects in the source domain intact.

NOTE : Movetree requires that the destination domain be in Native mode.

You also cannot move computer accounts with Movetree. Use the Netdom utility for that.

Here's an example

MoveTree /check /s Server1 /d Server2 /sdn OU=SourceOU,DC=Dom1 /ddn OU=DestOU,DC=Dom2 /u Dom1\administrator /p


/check performs routine checks of the tree before any move takes place
/s = source Directory service computer name
/d= Destination
/sdn= source subtree's root domain name
/ddn = destination subtree's root domain name.
/u = domain name \username
/p = password

You can see here that you can specify the source and destination OU.