Escolar Documentos
Profissional Documentos
Cultura Documentos
Handout for local administrators - DRAFT Tasklist - preliminary tasks ................................................................................................................................................................3 Make sure that the new DKXM user accounts can access applications in the NA domain.................3 Create migration table.........................................................................................................................3 Verify migration table..........................................................................................................................4 Make migration hand-out....................................................................................................................4 Translate migration hand-out to Spanish (optional).............................................................................4 Migration schedule planning...............................................................................................................4 Destine migration-target-dates for normal user migration...................................................................5 Destine migration-target-dates for special user migration ............................................................................................................................................................5 Inform users per mail about migration (optional).................................................................................5 Tasks at main migration ................................................................................................................................................................5 Overview - day by day migration.............................................................................................................6 Tasklist - day by day migration ................................................................................................................................................................7 Send out the invitation for migration to the users................................................................................7 Send remember-mail: remember user for daytime migration .............................................................8 Delete PST-passwords, if necessary..................................................................................................8 Record the user configuration.............................................................................................................8 Record Network Printers...............................................................................................................10 Record the Outlook Signature (optional).......................................................................................10 Record the Outlook PST-files information.....................................................................................11 Move the Outlook data files (PST-files) to the transfer directory.......................................................11 Change the domain membership of the client PCs to FS01..............................................................13 Deactivation of local security settings............................................................................................13 Deactivate HIPS............................................................................................................................13 Take the PC out of the NA domain ......................................................................................................................................................14 Rename the client to the name standard from FVWS...................................................................14 Join the PC to the FS01 domain ...................................................................................................16 Login with a FS01 account to verify the domain join......................................................................16 (Software deinstallation from the local PC)......................................................................................16 Shutdown the PC..............................................................................................................................16 Additionally operations for different user types..................................................................................17 VPN user.......................................................................................................................................17 VIP user.........................................................................................................................................17 Users with several clients..............................................................................................................18 Team PCs......................................................................................................................................18 Configure the user profile for the new environment ..........................................................................18 The user logs on with his new account..........................................................................................18 Configure the Outlook profile for the new environment..................................................................18 Configure Outlook for the Livelink Mail Archive.............................................................................20 Initialize the Blackberry device for Blackberry users......................................................................21 Change Connection Definition for VPN users................................................................................22 Reconfigure the printer connections..............................................................................................22 Run tests for verifying ......................................................................................................................................................22 Transfer of the users profile data ..........................................................................................................................................................28 Configure the Outlook Signature.......................................................................................................28 Hide and disable the old NA user account........................................................................................29 1
Make a feedback for every user in the migration table......................................................................29 Possible migration issues ..............................................................................................................................................................30 New Account.....................................................................................................................................30 Password Problems..........................................................................................................................30 Permissions Problems:.....................................................................................................................30 Network problem...............................................................................................................................30 Informational.........................................................................................................................................31 Information about Roaming Profiles for the users.............................................................................31 Information about changes at the logon script...................................................................................31 Logon with an account from Germany..............................................................................................32 In this hand-out are described the tasks for the local administrators at migration.
Make sure that the new DKXM user accounts can access applications in the NA domain Create migration table - Export user-information in the NA- and FS01 domain - Create Excel table Verify migration table Make migration hand-out Translate migration hand-out to Spanish (optional) Migration schedule planning - Destine migration-target-dates for normal user migration - Destine migration-target-dates for special user migration
Inform users per mail about migration (optional)
from German
Make sure that the new DKXM user accounts can access applications in the NA domain
Because fresh new users are created in the FS01 domain, this users have no rights for applications in the NA domain (they have no group memberships). If its possible, convert the existing groups to domain local groups, than you can add members from the FS01 domain to the converted groups.
mail willi.wichtig@vwfs.co
ssosa@vwb.com.mx
The migration table should store on a file share or Sharepoint where everyone participating at migration can access it.
Inth e e in e vn g (s g e te ) ugs d
A s o a p s ib s o n s o s le (inth n x d y e et as )
Inth n h e ig t
M v th c m u r o je t o e e o p te b c in th ta e O to e rg t U I-S U B
Inth e m rn g o in
U e lo so w h n w s r g n ith is e ac ut con Ue sr
T-Systems
I-SBU
(30 MB mailbox)
HuD
(the user knows his printers) OL in Spanish, start important applications C:\Documents and Settings\OLDUSERNAME\Mis documentos
T-Systems
Check before, if the GAL-Sync has created an contact Otherwise, the user could log on on not migrated PCs.
I-SBU
(500MB PST)
You can send the handout together with the email invitations, but highlight the presence of an attachment. Perhaps remind user that its normally not necessary to have a printed version of the handout. The new account information (username and password) is normally send out by the remember mail. TSM will include in the invitation the handout users.
For easy reconfiguration, a small protocol of user settings can be helpful; perhaps some simple hardcopies. Network printers Outlook signature Outlook PST-files
Its not possible to log in with an NA account to a FS01 PC. So its not possible to see the configuration after migration. Because the information is stored in the local registry, you can only record the settings with the logged in user.
If the user should record the configuration, make a user-guidance. At least the PST-file configuration should be saved.
Store the hardcopies on a easy accessible path, perhaps D:\Config .
Hardcopy with Keyboard-combination Alt-Prn, than open Word and press the Keyboard-combination Ctrl-V.
10
Than copy the Signatures folder to the backup directory. If you transfer the whole user profile as a part of the migration, this step is not necessary.
2. Now you can move the PST-files to the to the appropriate transfer directory of the user. The path to the transfer directory is: \\10.42.168.19\fsmx_PST$ The associated groups are: FS01\MX-FS-PST-Transfer-FW-G NA\MX-FS-PST-Transfer-FW-G (for Admin accounts in the FS01 domain) (for Admin accounts in the NA domain)
11
(When you are logged in with your FS01 admin account, you should not asked for a username/password.) Please move the PST-files carefully into the correct destination directory. If the PST-file is in the wrong directory, the mails and other items are imported in to the wrong mailbox. The maximum archiving data per user is 500MB. If the user has more data, burn it on CD/DVD/BD. If the user has one big archive with more than 500MB, he has to split the archives:
In this example, the old archive is archived into the mailbox and the very old archive is burned to CD.
12
The Group FS01\MX-ADM-Client-S-G is added to the local group Administrators on each client by a Group Policy. In the situation, where you cannot logon to the local PC with your FS01 admin account after migration you can try to correct the problem with the command gpupdate /force . In addition, the GPO (Group Policy Object, a part of the AD) removes the local administrator from the administrators group. Also all NA-groups are deleted. Without further doing, the user gets a new profile at next logon.
Deactivate HIPS
In our tests, the HIPS blocked domain GPO settings. So the deactivation of the HIPS is necessary. For deactivating, set the start type of the service McAfee Host Intrusion Prevention Service to disabled.
13
(please use the domain name and account name from the correct source domain)
C Client L Laptop M Monitor O Office communication devices B Thin Clients R Remote (Home Office Worker) W Workgroup 0-9 Standalone I Network Gear K Copy Machines F Fax G SAN- or SAN-attached storage component (X) P Printer (shortened list) nnnnn = (sequential) hexadecimal number Example: FSMXPUC00001 for the first Client you added to the FS01 domain.
15
(please excuse the use of German hardcopies) (This two part process is needed because you havent one account with both rights: the right to delete the computer account from the old domain and the right to add a computer to a domain.)
Shutdown the PC
16
VIP user
The only difference in migration is the level of special notice you do at migration (for example remember to synchronize Outlook by phone). Sometimes its difficult to say no to some special wishes:
Right Click on the Windows Start field > Explore > Favourites > Copy. Make a backup directory and insert the favourites (for example d:\backup). After migration, copy the favourites back (to the fresh new user directory).
Desktop Settings
17
You can do the same as with copying the Internet Favourites but with the desktop folder.
Please remember that VWFS uses roaming profiles, so the data is copied over the network every time the user logs on or off the PC. Please move out big files to the users home directory (H:) and place a shortcut on the desktop.
Team PCs
This is a pool of PCs with a group of users working on them (perhaps a call center). Every user can log on to every PC. In this case, migrate all PCs and users together. If this is not possible, make two stages. One possible migration plan: first change the domain of all PCs of a stage than migrate the user of a stage when they come; because of roaming user profiles, you need to make the adjustments only once per user
18
Additional configuration: add connections to other mailboxes show the user how to add an Outlook signature
19
Info: Dont include PST-Files in the Outlook-Profile. The archived PST-Files should be accessible at the next day(s) with the archive folder accessible directly in the mailbox.
20
21
Change Connection Definition for VPN users Reconfigure the printer connections Run tests for verifying
At a standard PC, after the user has logged in (next morning), there are some tests to do for checking the migration.
Test the Outlook connection to Exchange (if the user can log on to his mailbox)
Because of the integrated authentication, there is no need for input the logon information. So when you get this box, something is fishy:
In this case, I-SBU should analyze the problem. Information to First Level Support UHD T-Systems: For further connection troubleshooting (for example slow response) you can get the Outlook connection status by pressing the Key Ctrl and a right click on the Outlook icon at the windows info bar:
22
23
This looks OK: If there is a connection problem, the network drive isnt assigned by login:
24
25
Additionally, in the pilot migration, it was useful to look on the DNS Suffix Search List (because the HIPS sometimes blocks the execution):
If the Directiva de grupo local is listed, the deactivation of local security settings was not successful.
26
Located in VW Mexiko: Avaya Documentum Intranet Print Server in VWM Print Server in VW Bank Reuters See the application list documents.
Tests in the old file server RVS PLD INTRANET **** external treasury servers
27
Source: C:\Documents and Settings\OLD-USERNAME\Mis documentos Suggested temporary destination: D:\Backup\USERNAME Destination: C:\Documents and Settings\NEW-USERNAME\Mis documentos (The destination folder is created by the first login of the user.) If the user has files stored on the desktop, you can use the same procedure with the folder C:\Documents and Settings\OLD-USERNAME\Escritorio .
28
status comment migrated no problems user needs migrated Cuarto_Seoul migrated OK planned
VPN-user planned
ssosa@vwb.com.m
29
New Account
The user has not written down his new account information and he cannot login. One way to minimize the problem is to send out the account information table (without passwords) to all members of the daily migration in the remember mail. So the user can ask a colleague for his new account name. If the user is the first in the morning in the office, he has to call for help.
Password Problems
Depending on your password distribution process, issues are to be expected. User Management will provide a list of all DKXM accounts; password will be a standard password. User Management will send the DKXM account to the final users.
Permissions Problems:
Because new User Accounts are used, in applications with AD integrations (often Intranet applications like Sharepoint) permissions problems can happen.
Network problem
Another way for troubleshooting initial network drive letters assignment problems is at the command line. First open the path \\fs01\NETLOGON in the Explorer > one click on any file at will > type in the first keys of the filename (mexico.bat) > right click > Edit > search for the drive letter with problems > mark the appropriate command > open the CMD > copy the command In addition try to PING the destination:
30
(This is an example how to get the information, your server names differs.)
Informational
Information about Roaming Profiles for the users
VWFS uses Roaming Profiles. To configure Roaming Profiles you have to enter the network path for the user. The normal path is \\HOMESERVER\USERS\DKXMxxx\system.nt\profile . The profile paths are preconfigured for the users. In the time a user gets a new PC (VWFS standard, without a data partition D:), than it should be the best to copy the user data from the old PC to the users home drive H:.
In the FS01 domain has every user has its own logon script (initial all are the same). At the end of the user logon script is started the script POST_MAP.BAT which does the following: hard- and software-inventory installation of DameWare Remote Control client DeviceLocker (control of the USB-ports) update miscellaneous checks and configurations
32