Logo: LUTZ & GRUB AG | IT-Services

Migration to Active Directory Services

Why Windows Server 2019 Active Directory Services?

The Windows Server 2019 architecture is based on the proven Server 2016 feature set.

This includes:

  • 100% support from Microsoft for virtualization of all DCs in the infrastructure.
  • Centralized management, monitoring and maintenance of ADDS
  • Management console for centralized user help desk support (ADAC)
  • Windows Server containers – create more virtual applications per Hyper-V host with Docker
  • Advanced Powershell CMDlets for extensive administration tasks
  • Nano server for creating very small VMs
  • With “Shielded VMs” improved mutual compartmentalization
  • Enhanced GPOs and GPO management (remote update, DFS-R replication status, RsoP and modeling enhancements, etc.)
  • Easy configuration of different password policies (PSO) in a domain via graphical user interface (GUI)
  • Active Directory Recycle Bin with comprehensive recovery functions via GUI
  • Advanced BPA functions for DNS and ADDS server roles (best practice analyzer)
  • Managed Service Accounts – one account for multiple services (1:n), manageable service accounts (group managed service accounts)
  • Centralized, cross-domain password control
  • Kerberos extensions for using high number of Windows group memberships to reduce authentication problems
  • IPAM – DHCP IP address management for centralized DNS monitoring
  • Dynamic Access Control with file classification and permission access based on conditions

With Server 2019, more useful features were added:

  • Windows Admin Center
  • optional desktop view or pure server core
  • System data to integrate predictive analytics capabilities
  • hybrid cloud with Microsoft Azure
  • optional server core app compatibility
  • Windows Defender Advanced Threat Protection (ATP)
  • Windows Defender ATP Exploit Guard
  • Windows Defender application control
  • Security with Software-Defined Networking (SDN)
  • High-performance SDN gateways
  • Enhancements for shielded virtual machines
  • HTTP/2 for a faster and more secure web
  • Extensive failover clustering enhancements
  • Integrated support for Kubernetes
  • Encrypted networks
  • Low Extra Delay Background Transport (LEDBAT)Low Extra Delay Background Transport

Leaving nothing to chance in migration

Complete resource discovery is the foundation for a successful migration. We check your Active Directory environment and the IT infrastructure services that depend on it. This enables us to identify production processes and systems that are critical for the migration. These are analyzed and documented against the requirements for migration. On this basis, we recommend the best possible migration procedure with coordinated migration paths. In addition, we are happy to advise you on the selection of hardware, licensing models and present a technical project schedule. In this way, you receive comprehensive support for the migration method you require.


100 percent retention of productivity during migration

Services using the example of an “in-transition” domain migration: With this multi-phase form of ADS migration, 100% retention of productivity is guaranteed. Existing domain controllers with older operating systems are successively replaced by Windows Server 2019 DCs. Following this, the infrastructure servers can be migrated to 2019.

Phase 1
  • Recording and evaluation of the existing domain infrastructure services to create a catalog of measures for the migration process.
  • Creation of a technical project schedule
Phase 2
  • Preparation of the source infrastructure/cleanup of configuration problems.
  • Functional design of the updated future ADS infrastructure
Phase 3
  • Practical implementation of the DC substitution according to a defined schedule
  • Removal of old DCs and optimization based on new features and functions
Phase 4
  • Auditing after practical migration, acceptance of the new infrastructure, final documentation

Our services

Within the scope of consulting services for the implementation of your migration project, LUTZ & GRUB AG offers holistic consulting as well as practical support services for the entire project period.

In all services provided, the focus is on the traceability of the activities performed, the involvement of IT staff and the transfer of knowledge. To ensure effective and secure handling of the new functional systems, we offer practical product training based on the new infrastructure, either during the project or after the migration.