Skip to main content

Notifications

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Microsoft Dynamics NAV (Archived) / User Management - New ...
Microsoft Dynamics NAV (Archived)

User Management - New Domain

(0) ShareShare
ReportReport
Posted on by Community Member

Hi Everyone,

I have a query about User Management and I would be grateful for any help. 

In a short while, our organisation will be moving to a new Active Directory setup with a new domain name. So users will login to their Windows accounts with the id "newdomain\username".  Users in NAV are currently authenticating with their Windows accounts, and their User Name in the User table matches their Windows logon.

I have been tasked with finding an automated way of moving the users to the new domain.  I am just wondering if anyone has any experience in this area?  My current idea, is to run some C-SIDE code from a codeunit to take copies of all the users & permission sets etc, then insert them with their new User Names.  Finally set the status of the original User records to "Disabled".  

My issue is then trying to match the Windows Security ID's with the new users, is this as simple as copying them from Active Directory? Or is there a way to achieve this in NAV/Powershell/SQL? 

*This post is locked for comments

  • Suggested answer
    Alexander Ermakov Profile Picture
    Alexander Ermakov 28,094 on at
    RE: User Management - New Domain

    Yes, NAV should pick up the correct SIDs for the new domain.

    Also, refer here: forum.mibuso.com/.../moving-nav-server-to-a-different-domain

  • Community Member Profile Picture
    Community Member on at
    RE: User Management - New Domain

    Thanks, that seems a lot easier.  I have just spoken to our Network guys and they have said they will not be enabling SID history (I'm not sure why), so it seems that all I need to do is create the new user records, disable the old ones and then wait for the new Active Directory to be rolled out to each group, theoretically NAV should just pick up the SID and we should be good to go. (fingers crossed).

  • 4BzSoftware Profile Picture
    4BzSoftware 6,071 on at
    RE: User Management - New Domain

    You're welcome!

  • Verified answer
    Community Member Profile Picture
    Community Member on at
    RE: User Management - New Domain

    HI Nick,  

    I would suggest looking at the tool:  Active Directory Migration Tool.  

    www.microsoft.com/.../details.aspx

    This tool was created to accomplish just what you outlined.   It is also a way to query which service accounts are in use, and which security groups that the users belong to so you can move those to the new domain as well.   This would be difficult to accomplish with a script alone.   If you enable the SID history on the new accounts you have some breathing room during the migration as your NAV users will be recognized with the new login and the old SID attached to their AD account.   (As long as the new domain is part of a trusted forest)  

    We have just completed this migration and are using NAV.   It was very useful.   Once you have migrated,  If NAV causes challenges when the new domain is cut from the old domain,  there are posts on the forum on how to insert the new SID on the table "users"  

    Good luck.

    (Definitely read the guide if you are planning on using this tool as it will help stage this migration)  

  • Community Member Profile Picture
    Community Member on at
    RE: User Management - New Domain

    Ok thank you very much!

  • Suggested answer
    4BzSoftware Profile Picture
    4BzSoftware 6,071 on at
    RE: User Management - New Domain

    Hi Nick,

    NAV is designed to work in AD environment. When you input Domain\UserName, it will be converted into Windows SID in NAV automatically.

    For using Excel to duplicate needed information, a nice article from Olof Simren community.dynamics.com/.../write-c-al-code-in-excel

  • Community Member Profile Picture
    Community Member on at
    RE: User Management - New Domain

    Hi Khoa,

    I have had a look and I understand I can create users with Powershell, and this will be useful.  I guess my issue is how to do ensure they match the SID's which are stored in Active Directory (which is a new Active Directory environment).  Also, what are you recommending I use Excel for? Many thanks.

  • Verified answer
    4BzSoftware Profile Picture
    4BzSoftware 6,071 on at
    RE: User Management - New Domain

    Hi Nick,

    You should use Powershell and Excel, for example:

    New-NavServerUser -WindowsAccount 'domain\user' -ServerInstance InstanceName

    You can take a look at below link for detail:

    nav-magno.be/.../creating-users-with-powershell

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Daivat Vartak – Community Spotlight

We are honored to recognize Daivat Vartak as our March 2025 Community…

Announcing Our 2025 Season 1 Super Users!

A new season of Super Users has arrived, and we are so grateful for the daily…

Kudos to the February Top 10 Community Stars!

Thanks for all your good work in the Community!

Leaderboard

#1
André Arnaud de Calavon Profile Picture

André Arnaud de Cal... 292,850 Super User 2025 Season 1

#2
Martin Dráb Profile Picture

Martin Dráb 231,719 Most Valuable Professional

#3
nmaenpaa Profile Picture

nmaenpaa 101,156 Moderator

Leaderboard

Featured topics

Product updates

Dynamics 365 release plans