Active directory on win 2000 server

Posted on 2006-04-25
Last Modified: 2008-01-09
i'm not familier with win 2000 i need to move actove directory to another win 2000 server.
I used ntdsutil tools and try to seize the roles first to seize domain naming master i get error:

Attemting safe tranfer of domain naming FSMO before seizure.
ldap_modify_sW eror 0x35<53 (Unwilling To Perform).
Ldap extended error message is 0000214B: SvcErr: DSID-03210834, problem 5003 (Will_not_perform), Data 0
Win32 error retured is 0x214b(only DSAs configured to be Global Catalog servers should be allowed to hold the domain Naming Master FSMO role.)
Depending on the error code this may idicare a connection,
ldap, or role tranfer error.

Question by:Aida2
    LVL 48

    Accepted Solution

    Hi Aida2,

    wait a second! have you promoted your second server to a DC using dcpromo?

    why are you seizng the role - you should be transferring them!

    LVL 1

    Author Comment

    Thanks for resp.
    I try transferring vi gui (from the link you gave me) i get error
    The domain controller .... was not validated because: The RPC server is unavailable.
    When i login to new server and i can change to another domaincontroller.!
    LVL 1

    Author Comment

    I run netdiag on the new server i get error:
     Domain membership test . . . . . . : Failed
        [WARNING] Ths system volume has not been completely replicated to the local
    machine. This machine is not working properly as a DC.
    LVL 15

    Assisted Solution

    NEVER seize roles unless your original Domain Controllers crash!  You must first join the server to the Domain and then install Active Directory using DCPROMO.  Then gracefully change the FSMO role holders.  

    Retiring Domain Controllers and transferring FSMO roles is something that I do not recommend network admins try if they have never done it before.  It can seriously and permanently damage your network.  I would seek out a professional to help you

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Maximize Your Threat Intelligence Reporting

    Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

    Suggested Solutions

    This is the first one of a series of articles I’ll be writing to address technical issues that are always referred to as network problems. The network boundaries have changed, therefore having an understanding of how each piece in the network  puzzl…
    Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
    Hi everyone! This is Experts Exchange customer support.  This quick video will show you how to change your primary email address.  If you have any questions, then please Write a Comment below!
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.

    779 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now