Evaluating Technology Options for Automating an Active Directory MigrationDecember 13, 2013
Again, if you have been following along with my previous two posts, you know that Binary Tree provides an alternative to ADMT, the SMART Active Directory Migrator. In the previous two posts, we covered the differences between how ADMT and SMART Active Directory handle migrations without trusts and migration rollbacks. This post will provide a high-level overview of all of the primary differences between ADMT and SMART Active Directory Migrator. So let’s take a look …
- ADMT cannot roll back resource updating because the undo feature is restricted to the last
- In Interforest migrations, ADMT cannot roll back resource updating tasks again and the undo feature is restricted to the last session only
- In Intraforest migrations, ADMT deletes the source account after moving it to the target domain — the functionality to roll back is not provided
- If trusts between source and target domains cannot be established, ADMT cannot perform the migration, because it relies totally on SIDHistory
- ADMT uses a standard “users and groups” dialog for object attribute selection. It doesn’t allow filtering or modification for custom attributes to be migrated.
- ADMT does not allow you to modify all object properties.
- ADMT limits you when selecting objects to a simple list for selecting users and groups. It doesn’t allow for the customization or granular selection of object attributes that SMART Active Directory Migrator enables.
- When migrating multiple domains, all user resources need to be updated within those domains. ADMT requires you to separately update each source-target domain pair, which results in updating the same resources over and over again. With SMART Active Directory Migrator multiple projects may be merged together for the re-ACLing processes.
- SMART Active Directory Migrator performs a complete update of the user workstation. You can have SMART Active Directory MIgrator automatically change the workstations’ logon prompt to have a new default domain name, making the switch invisible to users. SMART Active Directory Migrator also resets DHCP with a temporary over-ride for the Target DNS server and DNS suffixes list order during the workstation cutover stage.
- Updating laptops can be challenging, as they are not always connected to the corporate network. SMART Active Directory Migrator can update laptops from a network share without any interaction with the users.
- ADMT has limited capabilities for updating resources. All permissions require a manual update, significantly adding to the administrative workload.
- SMART Active Directory Migrator enables you to clean up the SID History attribute of objects after a migration to preserve the security of your network. ADMT does not have the capability to clean up SID History.