Support Center

Converting Windows System Active Directory Domain Accounts to Local User Accounts

A Windows machine bound to an Active Directory domain can have two types of user accounts, domain user accounts and local user accounts.  When a Windows machine is removed from an Active Directory domain, the local accounts are the only ones available for login on the system after the domain leave.

Migrating a Windows machine to JumpCloud from Active Directory is a two-step process. 

The first step involves account migration where the ProfWiz utility is used to migrate the profile from the domain account to a new local account.

After the profiles from the domain accounts are migrated to local accounts, the second step, system migration, involves leaving the Active Directory domain and installing the JumpCloud agent.

Find a sequence diagram below for an overview of the migration process using the JumpCloud AD Migration Toolkit



JumpCloud provides administrators with a curated set of migration scripts and utilities for completing the two-step process of migrating an Active Directory domain bound machine and its user accounts to JumpCloud.

Find the steps for converting domain accounts to local accounts using the Active Directory Migration Toolkit below. 

  1. Download and unzip the JumpCloud AD Migration Toolkit on the target machine.
  2. Right click on the 'AccountMigration.bat' and select 'Run as administrator'
  3. A PowerShell interactive prompt will launch. Enter the desired local account username for the migration user account. 
      • The AccountMigration.ps1 script will create a new local user with the username provided and then download and launch the Profwiz utility. See the PowerShell commands used in this script here
  4. The User Profile Wizard installer will launch. Click 'Install' 
      • After the installer completes check the box to Launch User Profile Wizard Personal Edition and click Finish
    •  
  5. The User Profile Wizard will launch. Select the domain account to migrate from the profile list. Domain accounts will start with a SID number "S-1-5-XX"
  6. From the drop down list select the computer name
      • Enter the account name entered in Step 3 into the 'Enter the account name:' text field. 
      • Important Note: Don't check the box "Join Workgroup" because we will be migrating the system from the domain at a later time. This doesn't need to occur at this stage.
  7. The User Profile Wizard will migrate the profile from the domain account to the new local account. WAIT UNTIL THE MIGRATION PROCESS FINISHES. The process is completed when the output reads "Migration Complete!"
      • After clicking next the system will restart to complete the migration.
  8. Log into the new local account. The password for the new account created by the AccountMigration.ps1 is "Temp123!". This can be modified by changing the $Password variable in the AccountMigration.ps1 script.
      • After logging in on Windows 10 the applications installed via the Windows 10 App Store will update. This is expected behavior.
Find the full workflow for domain to user account migration process using the JumpCloud Migration Toolkit in the sequence diagram below.


See the following KBs for information: 
 

Last Updated: May 08, 2019 02:58PM MDT

Related Articles
desk-forwarding@jumpcloud.com
http://assets3.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete