You are viewing limited content. For full access, please sign in.



Migrating user to a new domain

asked on March 16, 2017 Show version history

We have a customer that currently has about 300+ user that are setup as Directory Named Users in the Laserfiche License Manager. They recently merged with another company. After the merge they have decide to move the users to the domain of the other company. The use case would be that the users are setup as DOMAINA\Username and will now be setup as DOMAINB\Username. What is the best way to migrate these users when they are setup as Directory Named Users. Is there a migration utility available to help automate this process.

It is understood that you can have a Laserfiche trustee that has been associated with domain accounts, so we understand that as an option but prefer not to go this route to eliminate some of the overhead in setting up new accounts in Laserfiche.

Thanks in advance

I want to add that the second domain has a 2 way trust relationship.



2 0


replied on March 22, 2017

Does Laserfiche have any suggestion on the above use case?


Thanks in Advance

0 0
replied on April 25, 2017

Hi, was there ever any resolution to this post? 

We have a similar scenario where I need to move 400+ users registered on LFDS as Windows Domain accounts to multiple domains. Currently all of the users below to one Domain but the Org is changing its Active Directory Strategy and deploying Domains for the different Sister Companies.

Through testing we found one can re-create each user individually on LFDS but to do his for 400+ users does not make sense.

Is there possibly a way that IF I have the Current SID for each user, to find and replace it with the New Domain SID in the LFDS DB?

I have noticed that LFDS seems to store the SID in some HEX format, so would need to understand what conversion on the AD SID would need to be done to make sure it matches to what is stored in SQL. 

Any other suggestions is also welcome.

0 0
replied on March 6, 2019

We have a customer that is looking to do this as well. Manually re-creating new accounts is the least of our concerns. The actual concerns are in the task assignments, history, security etc.

For example, Domain1\User1 has 10 tasks assigned in Forms, they might also have initiated multiple tasks. Now we create Domain2\User1 and they have no tasks and no history. Even if we manually re-assign all their current tasks, what if someone denies something they initiated under Domain1\User1 in the future.

They only way I can see this being manageable is if we could do what's called an "In Place" migration of the users. Meaning, we essentially just swap out the Domain Account reference without creating a replacement account in Laserfiche. This way the user retains ALL of their history, tasks, and potential future tasks.

The only thing that would break would be the folder security set by groups in the old domain, that might be a lot of manual labor, but at least its achievable.

Has anyone ever accomplished this type of migration for a large account?

0 0
replied on April 1, 2020


0 0
replied on October 28, 2020

Does LF use sidHistory in any of its logic to account for this type of a scenario? I am going through this now with a client that has 800+ users and the behaviors we are seeing within LF seem to indicate that it DOES take into account the sidHistory, but the behavior isn't consistent with our expectations. 

I'm curious IF and HOW LF uses the sidHistory.

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.