JSI Tip 3368. LDIFDE does NOT import users from trusted domains?

Jerold Schulman

February 13, 2001

1 Min Read
ITPro Today logo in a gray background | ITPro Today

When you use the LDIFDE utility to export and then import users or groups for Windows 2000 domains, users from trusted domains do NOT get added back to the Windows 2000 domain groups?

If you run the import in Verbose mode, you receive The object does not exist. LDIFDE then ignores the object.

Users from trusted domains are automatically added to the FSP (Foreign Security Principals) container, which stores the SID and logon name. When you export users from trusted domains, they are exported like:

member: CN=S-1-5-21-1656841636-584466940-1124750213-1006,CN=ForeignSecurityPrincipals,DC=sales,DC=jsiinc,DC=com

A domain user is exported like:

member: CN=JohnDoe,CN=Users,DC=sales,DC=jsiinc,DC=com If you rebuild the domain, the FSP container does NOT contain the required objects, and the import fails.

To workaround this behavior, export all the objects in the FSP container. Import these objects before you import users orgroups.

NOTE: You might want to try Ideal Migration and Advanced Ideal Administration for your import/export and administration chores.


About the Author

Jerold Schulman

Jerold Schulman

See more from Jerold Schulman
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

the interface of the PowerShell search tool with a hand holding a magnifying glass on a background of a blue sky and clouds in the shape of gears
PowerShell
How I Built My Own PowerShell Multi-File Search Tool
How I Built My Own PowerShell Multi-File Search Tool

Oct 22, 2024

burnout gif featuring a mannequin surrounded by office technology on fire
Career Tips
Am I Burned Out? How To Identify and Address Burnout in IT
Am I Burned Out? How To Identify and Address Burnout in IT

Oct 24, 2024

MLOps
Ops and More
Choosing Between Cloud and On-Prem MLOps: What's Best for Your Needs?
Choosing Between Cloud and On-Prem MLOps: What's Best for Your Needs?

Oct 23, 2024

Exclusive ITPro Resources
See all ITPro Resources

Featured Technical Explainers

AI chip
Cloud Computing
Cloud vs. On-Prem AI Accelerators: Choosing the Best Fit for Your AI Workloads
Cloud vs. On-Prem AI Accelerators: Choosing the Best Fit for Your AI Workloads
SaaS concept on a tablet
Cloud Computing
Why SaaS Backup Matters: Protecting Data Beyond Vendor Guarantees
Why SaaS Backup Matters: Protecting Data Beyond Vendor Guarantees
DevOps logo on top of code
DevOps
DevOps: Key to Faster, More Efficient Government Software Development
DevOps: Key to Faster, More Efficient Government Software Development
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

Recent What Is

cartoon shows a person next to a checklist and several icons that represent disaster scenarios
Disaster Recovery
BCDR Basics: A Quick Reference Guide for Business Continuity & Disaster RecoveryBCDR Basics: A Quick Reference Guide for IT Pros
technology interface with a person's hand drawing gears and cogs
PowerShell
Introduction To PowerShell Environment VariablesIntroduction To PowerShell Environment Variables