Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-2817: How to move a Unix server from classic zone to hierarchical zone.

Authentication Service ,  

12 April,16 at 11:08 AM

Applies to: Centrify DirectControl 5.1 on all supported platforms
Is it possible to move a Centrify server from classic zone (version 4.x) to Hierarchical zones (version 5.x)?
The adchzone command allows a joined Centrify server to be moved from a classic zone into a hierarchical zone.
Before moving the computer, be certain to migrate the classic zone's data to a hierarchical zone by running the admigrate command.
The basic syntax for the adchzone program is:
adchzone [options] -z zoneName -u userName [-p passWord]
Setting valid options
Examples of using adchzone:
The following command moves the joined computer on which the command is run to the hierarchical zone “finance”, which is a child zone of the parent zone “global”.
/usr/share/centrifydc/adedit/adchzone \\
-z "cn=finance,cn=global,cn=zones,ou=unix,dc=acme,dc=com" \\
-u administrator -p passwd
-z is the zonename (specify the distinguished name of the hierarchical zone to join)
-u is the AD username with permission to delete the computer account in the classic zone and add a profile in the new zone. If skipped, it will use Kerberos credentials for the current user.
-p is the password
-v is verbose