roles transfer
TRANSCRIPT
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 1/9
First I want to explain how to check FSMO roles in server.. Follow the below stepsStart ->run->dsa.msc->right click on acs.com and select operation masters.
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 2/9
Here we can see only three roles ie ( RID ,PDC ,INFRASTRUCTURE master) to check other two roles
4 .schema master ( you need to register this roler then only you can see)
5.domain naming master .. this you can see
Start ->run ->domain .msc -> goto properties of domain. I have explained you with a
scrren shot.
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 3/9
Above you can see how to register schema management and how to check the same.
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 4/9
Above you can see how to check domain naming master.
Now we will start how to transfer/seize the roles
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 5/9
In the above all the three roles are in dns.acs.com . we are transferring all these threeroles to another addns(ie additional domain server) see the steps below.
To transfer got to start -> dsa.msc -> goto operation master properties of acs.com andclick on change to transfer the roles ( this is GUI transfer.)
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 6/9
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 7/9
You can transfer the roles from command prompt using NTDSUTIL command
To check the roles in particular you can use netdom query fsmo command.
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 8/9
If any one of the server is crashed/down and if that particular server is holding any roles,
then that time will go for seize (means making the roles active forcibly)
In the below screen shot you can see the error displaying means the roles was in another
server and that server is down right now. So to make active you can follow the belowsteps.
Goto command prompt. Start -> run -> ntdsutil
8/14/2019 Roles Transfer
http://slidepdf.com/reader/full/roles-transfer 9/9
Type roles,connect to server and seize the role which is down.
Explnation of 5 Vital Roles
PDC Emulator:- This roles is for Time sync, password reset, Account lockout.If this role is down you cannot reset/unlock the passwords and time wll not sync.
RID Master: - This will release the pool of ID’s to create users. Default pool size is 500If this role is down you will not able to create any userid’s/group policy.
Infrastructure Master: This is for Cross domain Reference.If this is down, it will stop updating to other servers.
Schema master: Modification of classes and attributes of any object will maintained.
Domain Naming Master: Adding /Removal of Domain.
Out of five PDC Emulator is vital one
Brief explanation of why you need to transfer the roles
Instead of keeping all the five roles in one server . for loading balancing you can transfer
some of roles to another server(additional domain controller)
Brief explanation of why you need to seize the roles
Suppose if you have two servers and any one of the server is down. In this case you canuse seize in working server to make other roles active the roles forcibly which was in
crashed server.