Solved

FSMO Roles question

Posted on 2014-01-30
3
660 Views
Last Modified: 2014-01-30
I currently have 2 servers.  I intend on adding a third and then retiring the oldest one.
I have one AD Domain.  
Server1 is windows 2003 DC, which has FSMO Roles
Server2 is windows 2008 DC.  

When I installed Server2, I promoted it to DC but never transferred the FSMO roles becuase I cound't risk a failure in the transfer and then have to sieze the roles.  

I want to retire Server1.  
I intend to do it this way...
Add Server3, join domain and then promote to DC.  
Now I have 3 DCs, where Server1 still has the FSMO roles.  
Next I will attempt to transfer FSMO roles from Server1 to Server3.  
If that fails, I will then Sieze the FSMO roles on Server3.  
Once I seize the roles on Server3, I will take down Server1, never to be used again.

Once this is completed, I will now have Server2 as DC and Server3 as DC with FSMO roles.  

Server2 has never had FSMO roles and will never. .
If I sieze the roles on Server3, will that impact Server2 functioning in the domain as a DC?   in General will my approach work?  
TIA
0
Comment
Question by:BuddyWeaver
3 Comments
 
LVL 3

Accepted Solution

by:
BertSublime earned 100 total points
ID: 39821333
Your approach seems great,  obviously you are checking the health of the doamin before starting and after promotion of server 3.

you shouldn't have to seize the roles, if you do there is a problem with the domain.  

I would also have a quick read of the following,  which give some great info on roles as well as recommendations on placement.  

http://support.microsoft.com/kb/223346
0
 
LVL 7

Assisted Solution

by:dsnegi_25dec
dsnegi_25dec earned 100 total points
ID: 39821358
it will work .
0
 

Author Closing Comment

by:BuddyWeaver
ID: 39821409
thanks for the confirmations
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

While rebooting windows server 2003 server , it's showing "active directory rebuilding indices please wait" at startup. It took a little while for this process to complete and once we logged on not all the services were started so another reboot is …
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html) provided 218 attendees with a step-by-step guide for identifying Acti…
This tutorial will walk an individual through locating and launching the BEUtility application and how to execute it on the appropriate database. Log onto the server running the Backup Exec database. In a larger environment, this would generally be …
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now