<

Go Premium for a chance to win a PS4. Enter to Win

x

Transferring Active Directory FSMO Roles to a Windows 2012 Domain Controller

Posted on
9,670 Points
2,070 Views
11 Endorsements
Last Modified:
Experience Level: Beginner
5:08
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controller.

Video Steps

1. Log onto the new domain controller with a user account that is a member of both the Enterprise and Schema Admins

2. Verify the systems where the FSMO roles currently reside by launching a command prompt. Type netdom query fsmo.

3. On the desktop, type Run to get the run command screen. The schema management DLL must be registered. Type: regsvr32 schmmgmt.dll and hit the enter key. Ensure the DLL is registered successfully.

4. On the desktop, type MMC and select the MMC console option. From the console, select File and Add\Remove Snap-In.

5. Select the Active Directory Schema and click the Add radio button, then click OK

6. In the console, highlight Active Directory Schema, right-click and select Change Active Directory Domain Controller. This is because by default, it connects to the existing Schema Master and there is not an option to transfer it.

7. Select the domain controller where the role will be transferred to and click OK

8. Click OK on the warning that you are no longer connected to the Schema Master

9. In the console, highlight Active Directory Schema, right-click and select Change Operations Master. This will show the current Schema Master and provides the options to change it to the one you are currently connected. Click the Change radio button to switch the server. Verify this is the desired task by clicking Yes.

10. Ensure the change is successful

11. To change the Domain Naming Master, go to Server Manager and select Tools, then select Active Directory Domains and Trusts from the list. On the console, highlight Active Directory Domains and Trusts, right-click and select Change Active Directory Domain Controller. Select the domain controller you would like to move the role to and click OK.

12. Highlight Active Directory Domains and Trusts again, right-click and select Change Operations Master. Review the current and new servers. Click the Change radio button to switch the server. Verify this is the desired task by clicking Yes.

13. The final three roles are transferred with the Active Directory Users and Computers tool, go to Server Manager and select Tools, then select Active Directory Users and Computers from the list. In the console, highlight Active Directory Users and Computers, right-click and select Change Domain Controller. Select the new domain controller and click OK. In the console, select the domain name and go to All Tasks, and select Operations Masters. Tabs for the final three roles appear. On the RID screen click the Change radio button. Confirm the change by clicking Yes, and ensure the role was transferred successfully.

14. Select the PDC tab, click the Change radio button. Confirm the change by clicking Yes, and ensure the role was transferred successfully.

15. Select the Infrastructure tab, click the Change radio button. Confirm the change by clicking Yes, and ensure the role was transferred successfully.

16. If the domain controller you are decommissioning is the last Global Catalog server, ensure that the new domain controller is also a Global Catalog server. Go to Server Manager and select Tools, then select Active Directory Sites and Services. Expand the site, expand servers, then highlight the new server. Select NTDS Settings in the right panel, right-click, and select Properties. Ensure the Global Catalog box is checked.

17. Verify that all of the roles have successfully been migrated from the command line by typing: netdom query fsmo All roles should now show being located on the Windows 2012 domain controller.

11
Comment
2 Comments
 

Expert Comment

by:WAMSINC
Thanks
0
 
LVL 6

Expert Comment

by:Rakesh Kapoor
My two cents about FSMO roles and steps to transfer FSMO Roles and Seize FSMO Roles.
http://www.itingredients.com/what-is-fsmo-roles-flexible-single-master-operations/
0

Featured Post

Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

Join & Write a Comment

How to deal with a specific error when using the Enable-RemoteMailbox cmdlet to create a mailbox in the cloud-based service, for an existing user in an on-premises Active Directory.
Transferring FSMO roles is done when an admin wants to split roles between certain Domain Controllers or the Domain Controller holding the Roles has been forcefully demoted using dcpromo / forceremoval

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month