Verify all your applications upfront that have LDAP strings and change them.
How many Domain Controllers do you have? What OS does the DCs run? How many Applications?
A large scale environment can run logging to capture LDAP traffic, smaller just touch each application.
Therefore, since no same IP or DNS name, have both environments up simultaneously. Then power off old domain controllers to see what breaks.
Best way is to put the responsibility of the application on SME for the application. They should know how their application uses LDAP/AD. I know the AD admin will get blamed but best effort for help from application team is warranted.
- Edited by vaadadmin2010 11 hours 26 minutes ago