Solved

What order do I transer the FSMO roles when moving them to my backup DC?

Posted on 2008-10-06
5
314 Views
Last Modified: 2012-05-05
All,

I would like to ask ... I am in the middle of removing my FSMO DC for a rebuild. I would like to transfer the FSMO roles. However, no matter what article I read
http://support.microsoft.com/kb/324801
http://www.petri.co.il/transferring_fsmo_roles.htm

... None of them tell me what the correct order is to execute the transfer of the roles. Would an expert be so kind as to let me in on this little secret?

     I am familiar with the ntdsutil.exe command line tool. I created a dev environment and tested a transfer there. I started with the Schema (yes ... registered schmmgmt.dll and tried the snap in first) ... that was the order in the above MS KB ... followed by DNM, RID, PDC and IM. This caused my test domain to go unavailable ["There is no domain controller available for the domain you are trying to connect to"] when I rebooted. I was able to boot the test DC/GC box but the other two servers were unable to connect to the domain. This, in turn, forced me to kill the DC and seize the roles (in the order presented in the MS KB) to the secondary DC. Short of the metadata ... it worked like a champ and I have complete control over the dev environment again. I know this is not the right way. I want to do it right, please help.

Naerwen
0
Comment
Question by:Naerwen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 22650604
The secret is .... there is no secret - it really does not matter in which order the roles are moved.
0
 
LVL 1

Author Comment

by:Naerwen
ID: 22650655
KCTS,
That said. ... This is probably a dumb question or two ... but this is my first rodeo with moving DC/GCs around ...
Should I have all the users off line when I do this?
And also ... should I check the GC box on the backup DC and force replication before I transfer the roles? <=== Pretty sure I will want to if I am taking the old DC offline, right?
Once again, thank you ... a million times, thank you.
Naerwen
0
 
LVL 70

Accepted Solution

by:
KCTS earned 500 total points
ID: 22650700
>>check the GC box on the backup DC<<

its a good idea always to have at least two GCs available all of the time for redundancy - same with DNS - make sure both DCs also have DNS installed and that clients are configure with the IPs of both.
0
 
LVL 1

Author Closing Comment

by:Naerwen
ID: 31503442
KCTS is excellent as an expert. The consistantly correct answers are of great value that I can not get anywhere else. Thank you ... yet, again. Naerwen
0
 
LVL 70

Expert Comment

by:KCTS
ID: 22650817
Many thanks for your kind comments
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Are you ready to implement Active Directory best practices without reading 300+ pages? You're in luck. In this webinar hosted by Skyport Systems, you gain insight into Microsoft's latest comprehensive guide, with tips on the best and easiest way…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question