Using Microsoft Metadirectory Services Effectively
When Active Directory designs encompass multiple forests or when the design has to account for mergers and acquisitions, the Microsoft Metadirectory Services MMS tool can be invaluable in keeping directories in synch. MMS, now called Microsoft Identity Integration Server 2003 MIIS 2003 , enables you to integrate and manage identity information across multiple directories. These directories can be different systems or platforms. MIIS 2003 adds functionality to Active Directory by providing...
Implementing and Securing Password Migrations
The Active Directory Migration Tool is a comprehensive tool for migrating user accounts, computer accounts, and groups. One area this tool does not complete without additional configuration is the migration of user passwords to the new Active Directory domain. This feature is important when organizations require users to maintain passwords for access to the source domain as well as migrating service accounts to active directory. Implementing a secure Password Export Server PES into the...
Active Directory Database Integrity Check
To make sure that potential problems don't get away from you it is useful to regularly check the integrity of the Active Directory database. This is performed via the NTDSUTIL application. Some maintenance tasks, such as an integrity check or defragmentation of the Active Directory database, require that the server be rebooted into Directory Services Recovery mode. This means that the domain controller will not be available. Ensure that you are aware of this during your maintenance windows and...