Labels

Transfer Active Directory Master Roles

  1. On one of your DC's...
    1. In a command prompt run:
    2. netdom query fsmo /domain:YourDomainName
    3. This will show you the 5 Master Roles and which server has them
  2. To change the Schema Owner Role...
    1. On the DC that currently owns the role...
      1. Add Active Directory Schema snap-in to MMC console
      2. Right click Active Directory Schema
      3. Choose Change Domain Controller
      4. Select the DC you wish to have seize the role
    2. Right click Active Directory Schema once again
      1. Choose Operations Master
      2. Ensure that the appropriate server is listed as the one that the role will be transferred to
      3. Click Change and then Ok 
    3. Now you can change back to the command prompt and re-run the command:
      1. netdom query fsmo /domain:YourDomainName
      2. This should now show the new Schema Owner
  3. To change the Domain Role Owner (a.k.a. Domain Naming Master)...
    1. On the DC that you want to transfer the role to...
    2. Add Active Directory Domains and Trusts to MMC console
      1. Right click Active Directory Domains and Trusts
      2. Choose Change Active Directory Domain Controller
      3. Select This Domain Controller then click on the pertinent DC in the box below this option
      4. Click Ok
    3. Right click Active Directory Domains and Trusts
      1. Choose Operations Master
      2. Ensure the appropriate server is listed as the one that the role will be transferred to
      3. Click Change and then Ok
    4. Now you can change back to the command prompt and re-run the command:
      1. netdom query fsmo /domain:YourDomainName
      2. This should now show the new Domain Role Owner
  4. To change each of the following 3 roles (RID, PDC, and Infrastructure)...
    1. On the DC that you want to transfer the role to...
    2. Add Active Directory Users and Computers to MMC console
    3. Right click Active Directory Users and Computers
      1. Mouse over All Tasks
      2. Choose Operations Masters
      3. Select the tab corresponding to the role you wish to transfer
      4. Ensure the appropriate server is listed as the one that the role will be transferred to
      5. Click Change and then Yes
    4. After each one you can change back to the command prompt and re-run the command:
      1. netdom query fsmo /domain:YourDomainName
      2. This should now show the new role owner for the role that you just transferred
Labels:

Comments

Post a Comment

Popular Posts