Procedure Overview:
1) Place a note on the physical screen.
This is to show the computer is currently unavailable during the update!
2) Make sure we have a properly configured local/admin account and note the details.
3) Check remote access.
- if needed reset AD password to gain access and make a note of new/temp password.
4) Patches to DNS - Part1
- run CMD as Administrator
- notepad c:\Windows\System32\drivers\etc\hosts
Add the following lines:
10.1.1.208 WIN-UK0FBXZJ0BI
10.1.1.250 XEON1
10.1.1.93 trutops2023 trutops2023.nfad.local
10.1.1.242 MF0269 #mssql
5) Create temp folders - export profile data
Where __username__ is the domain name username....
- Common profile folders are stored at \\WIN-UK0FBXZJ0BI\user$\__username__
Open the above folder and create a subfolder, eg
- \\WIN-UK0FBXZJ0BI\users$\__username__\temp-ad-migration
Within this create another folder, eg
- \\WIN-UK0FBXZJ0BI\users$\__username__\temp-ad-migration\file-quick-access
Now copy Quick Access Pinned Folders here:
- From: %APPDATA%\Microsoft\Windows\Recent\AutomaticDestinations\
- To: \\WIN-UK0FBXZJ0BI\user$\__username__\temp-ad-migration\file-quick-access
- The following command template should work:
robocopy %APPDATA%\Microsoft\Windows\Recent\AutomaticDestinations\ \\WIN-UK0FBXZJ0BI\user$\__username__\temp-ad-migration\file-quick-access
6) Install Prequisits
- Make sure windows is up to date
- Make sure SentinalOne is running ok
- Where an office accont exists, make sure desktop/documents files have been synced with onedrive.
- Install RMM software as applicable.
- Install Wazuh software as applicable.
7) Create account on new AD server
8) Log desktop back in via new AD server
- Login as same user - do not give any local admin rights.
- Log office365 back in.
- Check outlook is syncinc
- Check onedrive is syncing.
- Pre-authenticate to old vantage server.
- Pre-authenticate to legacy/windows server.
- Recreate drive mappings (U:\ Drive)
- Log google back in where applicable.
9) Test and hand back to user!