Does the active directory migration tool keep the same user SIDs

There are several potential ways to do this. Probably the simplest is to do some variation of the following:

1. Join the domain
2. Log in as the new domain user, and log out
3. Log back in as an account with admin rights on the box (but not either the old or new user accounts)
4. Go to control panel, system, advanced
5. in User Profiles, click the Settings button
6. Select the local user's profile, click on Copy To, and browse to the new domain user's c:\documents and settings\username folder.
7. Click OK.
8. Click the Change button in Permitted to use Select the domain\username account you just copied

"you people"? What do you mean by "you people"? :) Anyway, if your DC is down and that is your only DC, then you should really be focusing on getting AD up and running again instead of trying to get users up and running individually on their local machines. The reason is without AD, you have no central authentication mechanism and therefore all of your "domain" PCs and servers become WORKGROUP PCs isolated from each other. You won't be able to access network resources without providing a local account username/password on each resource. I am not sure what you mean by "keep his active directory settings" either. What is the point of having them if AD isn't working anyway? There are various tools to reset an admin password if you have physical access to the machine. Ironically (or not), most of them are built on Linux :) Here is a link to some of them: http://www.petri.co.il/forgot_administrator_password.htm