uxconsole -migrate Migrate UNIX Users and Groups to Active Directory
Valid on UNIX
capamsc141
Valid on UNIX
Using the migrate command migrates users and groups from the UNIX host into Active Directory. The migration process attempts to migrate local users and groups into Active Directory and disable the local accounts.
This command has the following format:
uxconsole -migrate [-scope {l|n|a}] {-mode {p|f}|-input file} [-emulate] [-d domain] [-a name [-w pass]] [-users] [-groups] [-cgc container] [-new] [-v level] [-h] uxconsole -migrate [-show {-user filter|-group filter}]
- -migrateDefines the UNIX users migration option.
- -scope {l | n | a}Specifies the migration scope:
- lmigrate only local users and groups.
- nmigrate NIS users and groups from NIS\NIS+ server.
- amigrate local and NIS/NIS+ users and groups.
Default: l - -mode {p | f}Specifies the migration mode.Options: partial, fullDefault: f
- -inputfileDefines the full path of the accounts map file.Use the mapping file to resolve conflicts in user accounts that were discovered during the migration process. Create the map file in a CSV format with the following fields and parameters:type <USER|GROUP>, UNIX name <username>,requested action <KEEPLOCAL|MIGRATE|MAP>, AD name <AD mapped name>Example: USER,uxuser, MAP,aduser.You cannot specify the GROUP type to use the MAP action.You can use the MAP option to map user accounts only.
- -emulateSpecifies that the migration process runs in emulation mode.Running the uxconsole -migrate command in emulation mode does not migrate users to Active Directory. In emulation mode the uxconsole creates a journal file that reports on possible conflicts in users and groups IDs. Use the emulation mode to resolve conflicts between UNIX and Active Directory users and groups IDs.
- -ddomainDefines the name of the domain to migrate users and groups to.Running the-migrate -d command without supplying the administrator credentials does not enable UNIX Authentication Broker to migrate users and groups to Active Directory.
- -anameSpecifies the Active Directory administrator used to register, create, and update users properties in Active Directory.Note: Running the -migrate command without supplying the administrator credentials does not enable UNIX Authentication Broker to append UNIX attributes nor to add accounts or groups to Active Directory. You cannot resolve conflicts that were discovered during migration without supplying the Active Directory administrator credentials.
- -wpasswdSpecifies the Active Directory administrator's account password.
- -users(Optional) Specifies that only users are migrated to Active Directory.If not specified, all the users are migrated to Active Directory.
- -groups(Optional) Specifies that only groups are migrated to Active Directory.If not specified, all the groups are migrated to Active Directory.
- -cgccontainerSpecifies the name of the Active Directory container where new groups are created.
- -newSpecifies to migrate only new users and groups that were not not previously migrated.
- -vlevelSpecifies the verbose level.Range: 1-5
- -hDisplays the help.
- -showDisplays users and groups migration information.If specified, users and groups are not migrated.
- -userfilterDisplays only those users that match the filter criteria.
- -groupfilterDisplays only those groups that match the filter criteria.