User Profile Wizard Corporate Edition - ForensiT

1y ago
16 Views
2 Downloads
2.24 MB
112 Pages
Last View : 2m ago
Last Download : 2m ago
Upload by : Ronan Orellana
Transcription

User Profile WizardCorporate EditionUser GuideRelease 24.4ForensiT Software Limited, Office 8, Ladywood HouseLadywood Works, Lutterworth, LE17 4HD, England.Copyright 2022 ForensiT Software Limited. All Rights Reserved

ContentsContents . 2Introducing User Profile Wizard . 6Installation. 7Installing . 7Licensing . 8Deployment Files . 8What have I got? . 9Overview . 10Getting Started . 11Step 1 - Welcome . 12Step 2 – Config File . 12Step 3 – Domain Information . 13Step 4 – Domain Administrator . 14Step 5 – Workstation Information . 15Step 6 – Existing Domain . 17Step 7 – Update sIDHistory . 18Step 8 – User Account Options . 19Step 9 – VPN Settings . 20Step 10 – Run Options . 21Step 11 – Script Options . 22Step 12 – Follow on Script . 23Congratulations . 24What did we just do? . 25Migrating User Profiles with User Profile Wizard . 27Welcome . 28Select Computer . 28Select a User Profile . 31Select a User Profile (Personal Edition) . 33User Account Information . 34

Migrating Profile . 37Congratulations! . 38Automating Enterprise Migrations . 39Introduction . 39Return of the Deployment Kit . 40Rename workstations . 41Maintaining SID History . 43Rename user accounts . 45Rename Profile Folder . 46Skip migration if user is not found in lookup file . 47Enable ZeroConfigExchange. 47Migrating over a VPN . 48Script Options. 50Deploy using a Desktop management tool, like SCCM, or a Group Policy . 51Pre-installed Scripts . 52Running Additional Code . 53Next Steps . 55Create Single Deployment File . 56What did we just do? . 57Fine Tuning. 60The Migration Script . 61Deploying the Script From a Group Policy . 61Deploying a Single Deployment File from SCCM or your RMM Software. . 62Advanced Scripting Options . 63Migrating from domain to local accounts . 64Using the GUI . 64Automating Domain to Local Migrations . 67Migrating to Azure AD . 69Azure Object IDs and the ForensiTAzureID.xml file . 69Generating a ForensiTAzureID.xml file . 70Joining to Azure AD . 72Creating a Provisioning Package . 72

Configuring User Profile Wizard to migrate profiles to Azure AD . 75Migrating From an Existing Tenant . 77Migrating to Office 365 GCC and GCC High Environments . 79Migrating to an Azure AD Account . 81Additional Notes on using a Provisioning Package . 84.config Reference . 85Push migrations and the Command Line Console . 91Push or Pull? . 91Migrating a remote machine . 92Using the command line . 93Automating Push Migrations . 94Command Line Reference . 96Command Line Parameters . 96/COMPUTER computername (Optional). 96/DOMAIN domainname (Optional). 97/RENAME computername (Optional) . 97/UNJOIN workgroupname (Optional) . 97/TARGETACCOUNT accountname . 97/SOURCEACCOUNT accountname (Optional) . 97/SOURCEPROFILE profilefoldername (Optional) . 97/DOMAINADMIN domainadmin (Optional) . 98/DOMAINPWD password (Optional) . 98/LOCALADMIN localadmin (Optional). 98/LOCALPWD password (Optional) . 98/KEY key (Optional) . 98/JOIN (Optional) . 99/NOJOIN (Optional). 100/NOMIGRATE (Optional) . 100/NODEFAULT (Optional) . 100/DELETE (Optional) . 100/DISABLE (Optional) . 100/SILENT (Optional) . 100/NOREBOOT (Optional). 100/REBOOTDELAY seconds (Optional). 100/LOG logfile (Optional) . 100/RUNAS (Optional) . 101/HASH (Optional) . 101Frequently Asked Questions . 102What does User Profile Wizard do? . 102What's a profile? . 102

Why migrate profiles when moving to a Windows domain? . 102Why not just copy the data from the old profile? . 102Which version should I buy? . 103Will I have to visit every machine on my network to run the Wizard?. 103What version of Windows does the User Profile Wizard run on? . 103Can I use the free Personal Edition in a commercial environment? . 103What if I have a problem? . 104What isn’t migrated? . 104What about group membership? . 104How does User Profile Wizard handle roaming profiles? . 104Troubleshooting . 105Finding Domain Controller Fails/ “The RPC server is unavailable” . 105Configuring domains to maintain SID history . 107“The security database on the server does not have computer account for this workstation trustrelationship” . 109End User License Agreement. 110

I N T R O D U C T I O NIntroducing User ProfileWizardWhy User Profile Wizard?A User Profile is where Windows stores your stuff. It is where your Desktop,Documents, Pictures and Music files are all saved. Your User Profile is also whereWindows keeps all the information that makes your computer personal to you, like yourdesktop wallpaper, Internet favorites and the lists of documents you've recently opened.As the Windows operating system has developed, User Profiles have become ever moreimportant and are now an integral part of the way that Windows organizes data. In somecircumstances however, this tying of data to a single user account can be a problem.As businesses grow, IT requirements change. You might need to reconcile multipleWindows domains into a single Active Directory; you may be connecting yourstandalone computers to a domain for the first time; or you may be moving to cloudbased services like Azure AD and Office 365. When you sign in with a new account,Windows will create a new profile for you and you lose all your data and settings.This is the problem User Profile Wizard solves. ForensiT User Profile Wizard is aworkstation migration tool that will migrate your original user profile to your new logonso that you can carry on using all your existing data, and keep the same settings thatyou’ve always had.User Profile Wizard does not move, copy or delete any data. Instead it configures theexisting profile “in place” so that it can be used by the user’s new account. This makesthe process both very fast and very safe.This user guide is designed to introduce you to what User Profile Wizard can do. Forexample, by using the User Profile Wizard Deployment Kit you can build a scalable,enterprise solution to migrate tens of thousands of workstations, each with multiple userprofiles.User Profile Wizard has been developed to save you time, effort and money. We hopeyou like it.6

I N S T A L L A T I O NInstallationInstalling User Profile WizardYou should run the User Profile Wizard setup program on a single “Administrator”machine. The setup program will install the User Profile Wizard application files anddocumentation, together with the User Profile Wizard Deployment Kit. You can thencopy and distribute the User Profile Wizard application files.The only files you need to run User Profile Wizard are Profwiz.exe andProfwiz.config. You do NOT need to run the setup program on all the machinesyou want to migrate.InstallingTo install User Profile Wizard run the setup program.The setup program installs both User Profile Wizard and the User Profile WizardDeployment Kit.The User Profile Wizard User Guide, installed with User Profile Wizard, is a PDF file. Ifyou need PDF reader software, you can download it free of charge from the Adobewebsite at https://get.adobe.com/reader/7

I N S T A L L A T I O NLicensingWhen you purchase User Profile Wizard you will be sent a link by email to download aProfwiz.config file. This file contains your licensing information.To license User Profile Wizard, you simply need to copy the license file into the samefolder as the User Profile Wizard executable file, Profwiz.exe.To copy the license file, click the “Start” button and find “ForensiT User ProfileWizard”. Click “Deployment Files” to open the Deployment Files folder. Copy yourlicense config file into the folder.Deployment FilesTo run the User Profile Wizard on another machine you just need to copy theProfwiz.exe and Profwiz.config files. No other files are required.The Profwiz.exe and Profwiz.config files can be copied to any convenient location suchas a USB memory flash drive (memory stick or pen drive) or a network share.8

I N S T A L L A T I O NWhat have I got?The User Profile Wizard setup program installs five shortcuts on the start menu.The User Profile Wizard User Guide. This document!The Deployment Files folder. This folder contains the files neededto migrate a workstation to a new domain.User Profile WizardThe User Profile Wizard Command Line ConsoleThe User Profile Wizard Deployment KitWe will reference these icons throughout this user guide.9

O V E R V I E WOverviewUser Profile Wizard is designed to make migrating workstations to a new domain as easyas possible. Here’s a high-level overview of the process for migrating from one domainto another:1. Save your domain migration settings to Profwiz.config. To save your domainmigration settings run the Deployment Kit. See the Getting Started chapter in this guide2. Generate a migration script. If you want to automate workstation migrations, generatea script, again using the Deployment Kit. See Automating Enterprise Migrations.3. Test the migration process.4. Deploy the migration files. Copy the migration files from the Project folder to anetwork share. Create a Computer Startup Group Policy Object to call the migrationscript, or deploy using a Desktop management tool like SCCM.4. Test the deployed solution.6. Migrate machines.If you just want to migrate workstations interactively see Migrating User Profiles withUser Profile WizardIf you are looking to “push” migrations from a single administrator machine see Pushmigrations and the Command Line ConsoleUser Profile Wizard can also be used to migrate devices to Azure AD, or to migratedevices from a domain back to a workgroup.10

G E T T I N GS T A R T E DGetting StartedUsing the Deployment Kit to save your domain migration settingsThe settings User Profile Wizard needs to migrate workstations and profiles are savedin the Profwiz.config file.Profwiz.config is a standard xml file. You can edit it in notepad or any xml editor of yourchoice. However, the easiest way to gather the settings that User Profile Wizard needs isto run the User Profile Wizard Deployment Kit.The User Profile Wizard Deployment Kit is available from the Start menu: Start F- ForensiT User Profile Wizard- User Profile Wizard Deployment Kit.You don’t have to use the Deployment Kit to be able to use User Profile Wizard, but ifyou don’t save your settings to the Profwiz.config file you will have to enter them everytime you want to migrate a machine.In this section we will run through the basic settings needed to get User Profile Wizardup and running. We will return to the more advanced settings in “Creating EnterpriseMigration Scripts” later in this user guide.11

G E T T I N GS T A R T E DStep 1 - WelcomeWhen you start the User Profile Wizard Deployment Kit the first thing you see is theWelcome page. Click Next to continue.Step 2 – Config FileThe first thing the Deployment Kit asks you is whether you want to create a newmigration project or edit an existing one. To get started choose “Create migrationproject”You can name your project anything you want. Keep in mind, however, that the nameof the project will be the default name for your migration script. A good choice is thename of the new domain.12

G E T T I N GS T A R T E DStep 3 – Domain InformationThis is where we enter the name of the new domain. In this example, the new domainname is ‘HOMESTEAD’:The options here are “Join Domain”, “Force Join”, “Join Workgroup”, and “AzureAD”Join Domaintells User Profile Wizard to join a workstation to a new on-premisesdomain.Force Join tells User Profile Wizard to join the workstation to the new domain even if itis already joined to the domain. This option is useful if you are replacing one domain witha domain of the same name.tells User Profile Wizard to unjoin a workstation from an existingdomain and add the workstation to a workgroup. See the Migrating from domain tolocal accounts chapter later in this guide.Join WorkgroupAzure AD tells User Profile Wizard to migrate profiles to new Azure AD accounts.The Azure ID File Path is the path to the .xml file that User Profile Wizard uses to lookup the Object IDs of new Azure AD user accounts. A Provisioning Package is usedwhen joining a workstation to a new Azure AD tenant. For information about migratingto an Azure AD tenant, see Migrating to Azure AD later in this Guide.Click Next to continue.13

G E T T I N GS T A R T E DStep 4 – Domain AdministratorUser Profile Wizard needs to know what user name and password you want to use tojoin your workstations to the new domain. Enter these here. The password will beencrypted when it is stored in Profwiz.config file.Click Next to continue.14

G E T T I N GS T A R T E DStep 5 – Workstation InformationStep 5 lets you specify two additional options for joining your workstations to the newdomain.lets you specify where in your Active Directory tree you want theworkstation object to be created. To browse the Active Directory tree click Browse You can then select the container of your choice. (See below.)Enter AdsPathUse lookup file to get new computer names lets you rename the workstation when itis joined to the domain. We will cover this in “Automating Enterprise Migrations” laterin this guide.Click Next to continue.15

G E T T I N GS T A R T E D16

G E T T I N GS T A R T E DStep 6 – Existing DomainIn Step 6 you tell User Profile Wizard whether you are migrating from an existing onpremises domain or Azure AD tenant.If you are migrating from an on-premises Active Directory, enter the existing domainname.If you are migrating from an existing Azure AD tenant, check the box. The DeploymentKit will enter “azuread” in the existing domain name text box, regardless of the name ofthe existing tenant.Click Next to continue.17

G E T T I N GS T A R T E DStep 7 – Update sIDHistoryAt Step 7 you can choose whether to maintain the SID history of the source domainaccount.We will return to sIDHistory in “Automating Enterprise Migrations” later in this guide.18

G E T T I N GS T A R T E DStep 8 – User Account OptionsStep 8 allows you to set various options related to a user’s existing user account.Use lookup file to get new account names allows you to map a user’s existing accountname to their new domain account name if the account names are different. We willcover this in “Automating Enterprise Migrations” later in this guide.enables you to rename the existing profile folder (usuallyC:\Users\Username) to match the user’s new domain username. We will discuss this inmore detail in the “Automating Enterprise Migrations” chapter later in this guide.Rename Profile FolderEnableZeroConfigExchangeenablesautomatically configuring Outlook.Click Next to continue.19Microsoft’sZeroConfigExchangefor

G E T T I N GS T A R T E DStep 9 – VPN SettingsStep 9 enables you to save settings related to migrating over a VPN. We will return tothese in “Automating Enterprise Migrations” later in this guide.20

G E T T I N GS T A R T E DStep 10 – Run OptionsUser Profile Wizard needs to be run with Administrator credentials on the workstationthat is being migrated. If you are migrating a workstation remotely, User Profile Wizardwill need to connect to the machine using Administrator credentials for the remotemachine.Enter the Administrator credentials here.Click Next to continue.21

G E T T I N GS T A R T E DStep 11 – Script OptionsStep 11 is where you specify your scripting options to automate the migration process.We will return to here in the “Automating Enterprise Migrations” chapter in this guide.For now we will just uncheck the “Use Script” box.Enter the log file pathUser Profile Wizard will save a migration log file to the location you specify. The defaultis C:\Users\Public\Documents\Migrate.log. Take note of the log file path! If you everneed to contact ForensiT Support, we will always as you for the log file.Click Next to continue.22

G E T T I N GS T A R T E DStep 12 – Follow on ScriptUser Profile Wizard has the ability to run any Windows Script or executable in thesecurity context of the local administrator account you specify in step 10.Step 12 lets you specify the additional “Follow on” code you want to run. Again, we willreturn to this in “Automating Enterprise Migrations” later in this guideClick Next to continue.23

G E T T I N GS T A R T E DCongratulationsThat’s it! When you click Next at Step 10, the Deployment Kit tells you it is ready towrite the configuration file.Click Yes.24

G E T T I N GS T A R T E DWhat did we just do?By running the Deployment Kit, we have committed the information and settingsneeded to migrate workstations and profiles to the Profwiz.config file. If you open upthe Profwiz.config file it looks like this: ?xml version "1.0" encoding "UTF-8" standalone "yes"? ForensiTUserProfileWizard xmlns "http://www.ForensiT.com/schemas" Parameters !-- ForensiT User Profile Wizard run options -- !-- Note: options set here are overridden by parameters passed onthe command line -- !-- Domain -- Domain HOMESTEAD /Domain AdsPath OU Workstations,DC homestead,DC local /AdsPath !-- Azure AD -- Azure /Azure AzureObjectIDFile /AzureObjectIDFile ProvisioningPackage /ProvisioningPackage GCC /GCC !-- Options -- ForceJoin False /ForceJoin NoJoin False /NoJoin NoDefault False /NoDefault Delete /Delete Disable /Disable UnJoin False /UnJoin Workgroup /Workgroup ForceRoamingOption /ForceRoamingOption !-- Credentials -- DomainAdmin HOMESTEAD\Migrator /DomainAdmin DomainPwd E05D7D768B3070C43E2CC49206D0A60B /DomainPwd LocalAdmin FARM\Migrator /LocalAdmin LocalPwd C64F7B1C7BC43F02E13901DF447A8F89 /LocalPwd SetsIDHistory False /SetsIDHistory OldDomainAdmin /OldDomainAdmin OldDomainPwd /OldDomainPwd Key i 3C 3YzM /Key !-- Corporate Edition Settings -- Silent False /Silent NoMigrate False /NoMigrate NoReboot False /NoReboot RemoveAdmins False /RemoveAdmins MachineLookupFile /MachineLookupFile Log C:\Users\Public\Documents\Migrate.Log /Log !-- Script Settings -- RunAs /RunAs 25

G E T T I N GS T A R T E D Hash /Hash RunScriptPerUser False /RunScriptPerUser RunAsSystem /RunAsSystem !-- Settings for migrating all profiles -- All False /All OldDomain FARM /OldDomain UserLookupFile /UserLookupFile Exclude ASPNET,Administrator,defaultuser0 /Exclude !-- Advanced Settings -- Persist False /Persist NoGUI False /NoGUI SkipOnExistingProfile False /SkipOnExistingProfile SkipOnDisabledAccount False /SkipOnDisabledAccount SkipOnNoUserLookup False /SkipOnNoUserLookup FailOnMachineNameNotFound False /FailOnMachineNameNotFound

The User Profile Wizard User Guide. This document! The Deployment Files folder. This folder contains the files needed to migrate a workstation to a new domain. User Profile Wizard The User Profile Wizard Command Line Console The User Profile Wizard Deployment Kit We will reference these icons throughout this user guide.

Related Documents:

(b) A wizard follows the user and updates his or her location in the wizard UI on a tablet PC. Figure 2. Topiary’s wizard UI. The wizard map represents entities’ current location and orientation; to simulate updates, a wizard drags them on the map. The end-user screen lets a wizard mon

10 Migrating to Azure AD User Profile Wizard enables you to migrate user profiles to Azure AD accounts, but additional configuration steps are required. Azure Object IDs and the ForensiTAzureID.xml file In order to migrate a user a profile to an Azure AD user account, User Profile Wizard needs to know the Object ID of the user account.

Recover files detected by their signatures wizard on page 69 Recover files from a formatted partition wizard on page 73 Recover files from a deleted partitions wizard on page 75 Recover files from a physical disk wizard on page 77 Restore a deleted partition wizard on page 82 Create a new partition wizard on page 83

RP 2K, Second Edition RP 2L, Third Edition RP 2M, First Edition Bul 2N, First Edition RP 2P, Second Edition RP 2Q, Second Edition RP 2R, First Edition RP 2T, First Edition Bul 2U, First Edition Bul 2V, First Edition Spec 2W, First Edition RP 2X, First Edition, with Supp 1 Spec 2Y, First Edition

May 15, 2003 · the User Profile Upgrade Wizard. Upgrading one profile can take 10-15 minutes. If you do not want to upgrade your Profiles now, you can close the wizard and launch it later from the Windows Start menu: Start All Programs Dragon NaturallySpeaking 11 Dragon NaturallySpeaking Tools Upgrade Users 1. The first screen of the wizard lists the

following message appears after running the configure-wizard command: For restoring, the device to factory defaults, see Section on page10. 3 2. Type yes to continue with the wizard, and then press Enter. If you type no, you are exited from the CLI Wizard mode and returned to the "privileged" mode indicated by , the # sign. 3.

per, we propose the first privacy wizard for social networking sites. The goal of the wizard is to automatically configure a user's privacy settings with minimal effort from the user. 1.1 Challenges The goal of a privacy wizard is to automatically configure a user's privacy settings using only a small amount of effort from the user.

Animal Food Fun & MORE. Instructions Equipment: Paper plate Thin card (not paper as it is too thin) Yellow and brown paint (or felt pen). Yellow bendy straws (you can colour paper ones) Sellotape Glue Elastic What to do: 1) Draw this shape on the back of your paper plate and cut it out carefully. (save this to make the ears). 2) Paint the front of both pieces of the .