FSMO Role duplication.
Posted on 2006-10-28
I have a client who has 3 sites, which until this spring were connected by a VPN, managed by their ISP. This WAN had a single domain, and 3 WIn2000 AD DC's. This summer sometime, the client decided to begin managing their own WAN, and broke the VPN. However, it wasn't noticed until the start of the school year. (It's a school system)
I was on-site there for the 1'st time on Fri, and made a mistake... since the other servers were unavailible do to the VPN, (the previous network manager is unavailable to explain anything) I siezed all the FSMO roles I could at a remote site, thinking they had an improperly performed upgrade. (they had obsolete hardware that I thought was the other 2 servers, taken offline)
I can NOT seize the GC role... This will be a big problem.
Repairing the VPN will be the 1'st step, but what kind of trouble can I expect when I get them back on the same WAN, with the duplication of FSMO's? 2 RID & Schema Masters? If I remember right, I even went so far as to delete the machine account for the REAL Schema & RID Master... Is this going to take an Authoritative Restore to fix?