Hi,
I made more tests on fully updated Windows. The migration issue with dpapimig still exists.
The issue is now present on Windows server 2016 but it is OK on Windows server 2012r2
I noticed that if the password is the same between the old account and the new account, the migration is OK.
It means that the parameter pwszOldPassword of CryptUpdateProtectedState is buggy.
The tool dpapimig and the API CryptUpdateProtectedState are still supported ?
I see no remarks in the page https://learn.microsoft.com/en-us/windows/win32/api/dpapi/nf-dpapi-cryptupdateprotectedstate
about password.
Best regards,
David.