When moving FSMO roles the old fashioned way, you use MMC and move the roles each individually, it takes a little time, but it’s somewhat troublesome.
BUT, this can be achieved much quicker with Powershell 🙂
Here is how to transfer all 5 FSMO roles:
Move-ADDirectoryServerOperationMasterRole -Identity DC01 –OperationMasterRole PDCEmulator,RIDMaster,InfrastructureMaster,SchemaMaster,DomainNamingMaster
Where “DC01” above is the TARGET DC.
Check with netdom command afterwards:
Done!
It’s best practice to have two DC’s and then it’s advisable to split the FSMO between theesew two:
Place the following roles on a DC01:
RID Master;
Infrastructure Master;
PDC Emulator.
Place the forest roles on a DC02:
Schema Master;
Domain Master.
So on DC02 run:
Move-ADDirectoryServerOperationMasterRole -Identity DC02 –OperationMasterRole SchemaMaster,DomainNamingMaster
So things look like this:
Related Posts
Active Directory: Loose the old home older setting- Active Directory: Changing default OU for new USERS and COMPUTERS
- Windows failed to apply the MDM Policy settings
- Windows server 2019: Troubleshoot missing SYSVOL and Netlogon shares
Office 365/Azure: Force sync from Azure AD Connect to Office 365/Azure- Powershell: How to modify login script path
Can this Powershell be run for target DC in the event the current FSMO DC server is down due to a disaster ?
Nice article nevertheless.
Thank You.
Thanks for writing 😉
It’s a little complicated, but it can be done, try searching for “seize fsmo roles” on Google 😉