[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now


My DC who was operations Master died, and cannot be revived.  Getting SAM error on remaining DC

Posted on 2004-10-25
Medium Priority
Last Modified: 2012-05-05
My DC that was Op Master died, and now I am getting a crazy amount of SAM errors on my remaining DC, saying I will be unable to create new accounts.  I cannot change the operations master to the other machine because I cannot get it revived - so it says it's "offline" when I go to the AD Scema snap in.  I had AD running on both machines when th op master died,and the AD seemed to be replicating fine, in that if I made a new account on the op master it showed up in users and computers on the second DC, so I thought it wouldn't be a big deal.  I get an error saying that "the account identifier failed to initialize properly..."blah, blah and I think that this has to do with the operations master roles not being transfered.  I cannot add users and everything is messed up.  I am an AD lightweight, so go easy on me please...Can anyone help?
Question by:Lynniebobinnie
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
LVL 71

Accepted Solution

Chris Dent earned 1000 total points
ID: 12401698


Ensure you have the DNS Service set up on your new Domain Controller.

Then here's how to force transfer the roles onto the new server:


Then start typing this lot in (at any time ? shows the lists of available commands):

connect to domain <your domain>
connect to server <your server>
quit <quits to FSMO Maintenance>
seize PDC
seize Domain naming Master
seize RID Master
seize Schema Master
seize Infrastructure Master
quit <quits the program>

Confirm each of those is taken over correctly. It'll let you know after each one

Make your server a Global Catalog (right click on NTDS Settings for the Server in Active Directory Sites and Services).

Let me know if you run into any problems with that.
LVL 71

Expert Comment

by:Chris Dent
ID: 12401731

I should have added this point.

It's really really important that after Seizing those roles your Old Server **never** comes back onto the domain.

If you recover the hardware it must be rebuilt.
LVL 71

Expert Comment

by:Chris Dent
ID: 12401760

I assumed all roles were on the old server, obviously you won't need to seize roles if the server already runs them or another working server has it.

Sorry for all the additional comments, think I need a coffee.
LVL 20

Assisted Solution

Debsyl99 earned 1000 total points
ID: 12401796
Just to check - you only need to seize the roles that are no longer available, so be careful -
How To Find Servers That Hold Flexible Single Master Operations Roles
Another way to locate a FSMO role holder.
The following is th ms article that relates to Chris's post above:
Using Ntdsutil.exe to seize or transfer FSMO roles to a domain controller

Once you've successfully seized roles you will then need to remove your extinct dc from active directory:
How to remove data in Active Directory after an unsuccessful domain controller demotion - be ultra careful with adsiedit if you use it.
How to remove data in Active Directory after an unsuccessful domain controller demotion

You may also need to look at establishing a new global catalog server if that was set on the old dc - will post on that if you need further instructions

Deb :))

Author Comment

ID: 12402361
thakns, I'll give it a try and see what transpires...

Featured Post

What’s Wrong with Your Cloud Strategy ?

Even as many CIOs are embracing a cloud-first strategy, the reality is that moving to the cloud is a lengthy process and the end-state is likely to be a blend of multiple clouds—public and private. Learn why multicloud solutions matter in this webinar by Nimble Storage.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
With the evolution of technology, we have finally reached a point where it is possible to have home automation features like having your thermostat turn up and door lock itself when you leave, as well as a complete home security system. This is a st…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question