Solved

Seizing FSMO roles in Windows 2008R2

Posted on 2010-08-21
4
7,480 Views
Last Modified: 2012-08-13
Hi,

So, I had a disk failure, which occurred on the server that was hosting my RID Master. As a result, that server is no longer up to date, even with recovery so, I can't run DCPROMO because it says the server itself is offline. So, I have to use NTDSUTIL to seize the FSMO roles over to my secondary server.

When I try to do this via command, I get an invalid syntax error:

C:\Users\administrator.[DOMAIN]>ntdsutil
ntdsutil: roles
fsmo maintenance: connections
server connections: connect to servername [SERVER]
Error parsing Input - Invalid Syntax.
server connections:

Now, I'm following the cookbooks provided the resource online and I don't think I've missed anything but, then again, it is a Microsoft tool, and I am no expert.

Any suggestions (besides turning off my computer) would be appreciated :)
0
Comment
Question by:wsani
4 Comments
 
LVL 30

Accepted Solution

by:
Rich Weissler earned 167 total points
ID: 33492198
Sounds like the cookbook has a typo in it.

http://support.microsoft.com/kb/255504

> server connections: connect to servername [SERVER]
Try "connect to server [servername]" instead.

0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 167 total points
ID: 33492213
Yeah definite mistake in editing another good resource with screenshots is on daniel's site

http://www.petri.co.il/seizing_fsmo_roles.htm

So since that server is dead and gone and you definitely don't want to bring up the old rid master again.  Wipe it and run a metadata cleanup for it in AD

http://www.petri.co.il/delete_failed_dcs_from_ad.htm

Thanks

Mike
0
 
LVL 74

Assisted Solution

by:Glen Knight
Glen Knight earned 166 total points
ID: 33492214
Just to confirm.  Are you logged on to a domain controller?

If so launch a command prompt and type the following:

>NTDSUTIL<enter>

In the NTDSUTIL prompt type: roles<enter>
this will take you in to the fsmo maintenance

From here type connection<enter> then connect to server servername<enter>

Servername is the name of the domain controller you are logged in to.  You should get a confirmation of the connection.

Then type q<enter> to go back to the fsmo maintenance section.
Then you run the following commands for eachn of the fsmo roles you want to seize:

Seize domain naming master
Seize infrastructure master
Seize schema master
Seize RID Master
Seize PDC


0
 

Author Closing Comment

by:wsani
ID: 33492369
Nailed it :) Thanks!
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html) provided 218 attendees with a step-by-step guide for identifying Acti…
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question