Mark Minasi's Tech Forum
Register Calendar Latest Topics Chat
 
 
 


Reply
  Author   Comment   Page 1 of 2      1   2   Next
TrinityServicesGroup

Still Checking the Forum Out
Registered:
Posts: 6
Reply with quote  #1 
Greetings to all,
We're in a merger with a single forest/domain with 1500+ users already in O365. Edit: Zero users on-prem. We're using the latest AADC, ADFS and life is well. Server2012 level AD. As part of the merger we now are looking at a Cross Forest domain migration into a new forest. Will this break our O365 users when we land in the new forest? We're concerned about orphaning our cloud users.

Thanks for the sage replies,
TrinityServicesGroup
0
donoli

Senior Member
Registered:
Posts: 502
Reply with quote  #2 
Here are a 2 technet articles on it.  I hope that they help.

https://social.technet.microsoft.com/wiki/contents/articles/13904.how-to-migrate-users-across-forest-cross-forest-using-admt-3-2-with-sid-and-passwords.aspx

https://technet.microsoft.com/en-us/library/cc974332(v=ws.10).aspx
0
Wobble_Wibble

Avatar / Picture

New Friend (or an Old Friend who Built a New Account)
Registered:
Posts: 45
Reply with quote  #3 
Few questions...

Azure AD Connect is talking to the 2 forests?

1. You have company1.com and acme.com and going to newfred.com?
Or
2. You have company1.com and acme.com and going to acme.com?
Or
3. Some other option

In 1. You need to go cloud only mailbox, merge domains, resync users to new users.
In 2. You need to go cloud only mailbox on company1.com , merge domains, resync users to new users in acme.com
3. To be discussed



__________________
Press any key....
Yes, any key....
OK, try the space bar.
0
TrinityServicesGroup

Still Checking the Forum Out
Registered:
Posts: 6
Reply with quote  #4 
Thanks for the reply!

Company 1 has AADC to an O365 tenant & Company 2 has AADC to a second O365 tenant.

We need to merge both domains to a newfed forest containing both domains and a single multi domain O365 tenant with AADC & SSO.

A cross forest domain move (ADMT) will take care of the on-prem moves but the concern is how to deal with all of the O365 users.

Does an O365 tenant to tenant move exist?

Thanks again,
TrinityServicesGroup
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 795
Reply with quote  #5 
Quote:
Originally Posted by TrinityServicesGroup

Company 1 has AADC to an O365 tenant
Company 2 has AADC to a second O365 tenant.


Two separate ADDC instances or 1 install talking to both forests?

Quote:
Originally Posted by TrinityServicesGroup

We need to merge both domains to a newfed forest containing both domains and a single multi domain O365 tenant with AADC & SSO. A cross forest domain move (ADMT) will take care of the on-prem moves but the concern is how to deal with all of the O365 users. Does an O365 tenant to tenant move exist? Thanks again, TrinityServicesGroup


So you have a few issues and they are great fun!.
There is no O365 supported tenant to tenant migration
https://support.office.com/en-ie/article/How-to-migrate-mailboxes-from-one-Office-365-tenant-to-another-65af7d77-3e79-44d4-9173-04fd991358b7

Take a look at BitTitan
http://blog.bittitan.com/migrating-from-office-365-to-office-365-a-daunting-challenge/

I cannot say this enough, plan, plan and plan.
If you have access to a MS Partner or MS Partner status get access to 2 demo's O365 environments and test in that.
Discuss your plans with the rest of the team.
Make at least one senior stake holder aware of the plans and issues

1. Autocomplete will probably break
2. Address book will probably break or at least cause issues
3. Distribution and Security groups in O365 groups will need re-configuring
4. The GAL will be fun
5. Skype for Business users will loose their contacts
6. All your SMTP devices will need re configuring if they relay off O365
7. You will at some stage have to remove a DNS Domain from one tenancy and add to another. I have not managed to get a script to remove my "moving domain" and not monumentally mess up all the other domains. So I've added attributes so I can mass change in the GUI!!!
8. Some attribute will get missed in a group, SIP address, user, email address, tag list etc that will cause you issues in removing domain names and mean you are hunting for the attribute to change and waiting for replication to occur in O365
9. Have access to the DNS Zone control panel so you can add/ remove DNS records as you need.

And all of this before you have to deal with ADMT.
My 2 cents - keep one of the existing O365 Tenancies and migrate into that, then if you really want, migrate to a new one with the new required name/ UPN/ FQDN.

Well you'll have a job for the next 2 years[smile]

__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 795
Reply with quote  #6 
Welcome to the forum by the way.

__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
cj_berlin

Avatar / Picture

Senior Member
Registered:
Posts: 215
Reply with quote  #7 
Quote:
Originally Posted by wobble_wobble


Take a look at BitTitan
http://blog.bittitan.com/migrating-from-office-365-to-office-365-a-daunting-challenge/

1. Autocomplete will probably break
2. Address book will probably break or at least cause issues
3. Distribution and Security groups in O365 groups will need re-configuring
4. The GAL will be fun

And all of this before you have to deal with ADMT.


If those four are a concern, take a look at Quest ;-)

__________________
Evgenij Smirnov

My personal blog (German): http://www.it-pro-berlin.de/
My stuff on PSGallery: https://www.powershellgallery.com/profiles/it-pro-berlin.de/
0
TrinityServicesGroup

Still Checking the Forum Out
Registered:
Posts: 6
Reply with quote  #8 
Thanks to all for the sage replies and thanks again Mark for reviving this forum!

Yeah, it's going to be messy and we've leveraged services from our EA to assist in planning / execution. Of course, we have limited timelines dictated from above. Facts & reality will dictate otherwise in due time to adjust accordingly.

We're in talks with BitTitan now. (Which are the final steps in the process) It's expensive but rightfully so as they are the only ones out there at the moment that can accomplish the O365 tenant to tenant transfer. From what we currently understand BitTitan handles the cloud to on-prem to new cloud bounce on their infrastructure and we're told that it is 'seamless'. In the many years that one has been pushing packets one has yet to encounter a truly 'seamless' transition but we are hopeful.

Thanks & Regards,
TrinityServicesGroup

0
TrinityServicesGroup

Still Checking the Forum Out
Registered:
Posts: 6
Reply with quote  #9 
@Wobble_wobble, Thank you.

I contributor on the old forum for years before it went into hibernation. If memory serves Mark had a Raid crash on the host server and then life got in the way. I'm happy to see it back again and hope it will return to its vibrancy once again.

One greatly appreciates the sage replies,
TrinityServicesGroup
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 795
Reply with quote  #10 
Quote:
Originally Posted by cj_berlin


If those four are a concern, take a look at Quest ;-)


Have you experience with it?

I never though of them TBH

__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
cj_berlin

Avatar / Picture

Senior Member
Registered:
Posts: 215
Reply with quote  #11 
Quote:
Originally Posted by wobble_wobble
Have you experience with it? I never though of them TBH


Sure do. I am even certified for AD and Exchange migration products.

__________________
Evgenij Smirnov

My personal blog (German): http://www.it-pro-berlin.de/
My stuff on PSGallery: https://www.powershellgallery.com/profiles/it-pro-berlin.de/
0
wobble_wobble

Avatar / Picture

Associate Troublemaker Apprentice
Registered:
Posts: 795
Reply with quote  #12 
Nice.
You'll have to tell me more

__________________
Have you tried turning it off and walking away? The next person can fix it!

New to the forum? Read this
0
TrinityServicesGroup

Still Checking the Forum Out
Registered:
Posts: 6
Reply with quote  #13 
@Cj.., Thanks! Quest software/services are in turmoil here in the US post the Dell acquisition but they are on our radar.

Appreciate the sage comments and recommendations,
TrinityServicesGroup
0
cj_berlin

Avatar / Picture

Senior Member
Registered:
Posts: 215
Reply with quote  #14 
Quote:
Originally Posted by TrinityServicesGroup
Quest software/services are in turmoil here in the US post the Dell acquisition


Yes, you could say that ;-) But not nearly as much as they were on their way to becoming part of Dell back in 2012.

__________________
Evgenij Smirnov

My personal blog (German): http://www.it-pro-berlin.de/
My stuff on PSGallery: https://www.powershellgallery.com/profiles/it-pro-berlin.de/
0
jsclmedave

Administrator
Registered:
Posts: 441
Reply with quote  #15 
Quote:
Originally Posted by cj_berlin


If those four are a concern, take a look at Quest ;-)


Quest..?  Has it left Dell completely or still a Dell Bundle?

I only ask since we are looking them as well for AD.

__________________
Tim Bolton @jsclmedave
Email: [string](0..20|%{[char][int](32+('527377347976847978324785847679797514357977').substring(($_*2),2))}) -replace ' '  

New to the forum? Please Read this
0
Previous Topic | Next Topic
Print
Reply

Quick Navigation:

Easily create a Forum Website with Website Toolbox.