Solveme.net

In Active Directory there are five FSMO roles, Two roles are forest wise and Three roles are Domain wise. The forest wide roles must appear once per forest, the domain wide roles must appear once per domain.

 

Forest Wide Roles -

1) Schema Master - Only one server should be in the forest

2) Domain Naming - Only one server should be in the forest

 

Domain Wide Roles -

1) Relative ID (RID) Master -Only one server should be in Domain.

2) PDC Emulator - Only one server should be in Domain.

3) Infrastructure Master - Only one server should be in Domain

 

How to Transfer All FSMO roles to other server.

For details about how to transfer FSMO Go to http://itpro.solveme.net/index.php/windows-ad/30-how-to-transfer-the-fsmo-roles-in-win-server-2003-2008,-p-1.html

 

How to determine which servers are holds FSMO role ?

Many methods are available to determine the FSMO roles holder server details.

 

 

Method 1 - Using NETDOM Command

This is very easy way to determine all FSMO roles very clear by using NETDOM command, This command will works on Microsoft Windows Server 2003/2003 R2, 2008/2008 R2 and earlier version of servers. NETDOM command also works on powershell.

Step 1 - Open command prompt as administrator, -Or- Open powershell (Server 2008 or later)

Step 2 - Type - netdom query fsmo, Result will be show such as below image 


 

 

 

 

 

 

 

 

 

Method 2 - Using NTDSUTIL Command

Ntdsutil.exe is a command-line tool that provides management facilities for Active Directory. You can use Ntdsutil.exe to perform database maintenance of ADDS (Active Directory Directory Services).

Using ntdsutil command, Can be find out the which servers are holds which FSMO (Flexible Single Master of Operations).

 

NTDSUTIL on server 2003/2003 R2

Step 1 - Open command prompt with Domain Admin, If not login with Domain Admin/Administrators user then run a command prompt as administrator and types user credentials.

Step 2 - Type ntdsutil and press enter.

Step 3 - On ntdsutil prompt type domain management and press enter.

Step 4 - On domain management prompt type connections and press enter.

Step 5 - Once server connections appear type connect to server servername

Example - server connections: connect to server dc1

Step 6 - Once connected to server with logged user (Run as user), Type quit and press enter.

Step 7 - On domain management prompt type select operation target and press enter.

Step 8 - On select operation target prompt type list roles for connected server and press enter

Now you will see all the FSMO roles holder server same, Example- you will look like this -

 

C:\WINDOWS\system32>ntdsutil

ntdsutil: domain management

domain management: connections

server connections: connect to server dc1

Binding to dc1 ...

Connected to dc1 using credentials of locally logged on user.

server connections: quit

domain management: select operation target

select operation target: list roles for connected server

Server "dc1" knows about 5 roles

Schema - CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domainname,DC=com

Domain - CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domainname,DC=com

PDC - CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domainname,DC=com

RID - CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domainname,DC=com

Infrastructure - CN=NTDS Settings,CN=DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domainname,DC=com

 

select operation target:

Comments

No comments yet.

Add Comment

* Required information
(never displayed)
 
Notify me of new comments via email.