Moving FSMO Roles from Windows Server 2008 R2 to Windows Server 2012 Domain Controller

In the previous blog we have learnt how to prepare Active Directory for Windows Server 2012 Domain Controller. Lets move the FSMO Roles and decommission the last 2008 domain controller from the network.

Before We Begin

The account with which we are going to perform this task should be a member of Enterprise Admins Group and Domain Admins Group. For testing purpose I have used the default Admin Account.

Lets Explore

Scenario

Domain Name : MSEXCHANGETEAM.IN

DC Name : DC1 and DC2

Forest Functional Level : Windows Server 2008 R2

Domain Functional Level : Windows Server 2008 R2

========================================

Checking FSMO Role Owner.

image

Figure 1.1 : Netdom Query FSMO

DC1 is Windows Server 2008 R2 Server with all roles.

Lets login to Windows Server 2012 Active Directory and Move the Roles.

First lets move the Schema Master Role.

image

Figure 1.2 Registering Schema Mgmt.dll

By default this is not registered. We have to register by running the above above command. So that we can open Schema Master using MMC.

image

Figure 1.3 DLL Register succeeded.

image

Figure 1.4 : Add Active Directory Schema using MMC.

Right click Active Directory Schema and then select “Change Active Directory Domain Controller” as shown above.

image

Figure 1.5 : Change Directory Server

image

Figure 1.6 : Select Operations Master

image

Figure 1.7 : Click change as shown above.

image

Figure 1.8 : Schema Role Transferred successfully.

Now lets move the Domain Name Master. To do that open Domain and Trust.

image

Figure 1.9 : Domains and Trust connected to DC2.

To connect to DC2 please follow 1.4 and 1.5 to change the directory server.

image

Figure 1.10 : Domain Naming Master changed.

Now lets open Active Directory Users and Computers to change the remaining three roles.

image

Figure 1.11 : ADUC connected to DC2.

To connect to DC2 please follow 1.4 and 1.5 to change the directory server.

Select Operations Masters

image

Figure 1.12 : Change all Roles from one location.

In figure 1.12 Change each roles by selecting the roles as shown above.

Since the roles are Flexible they can be moved back as and when required. We have used GUI option to move. This is possible only when both source and target DC is reachable. In case if the DC is crashed then we can perform seize by logging into any one available domain controller.

Finally lets run the command to check if all roles have been moved successfully.

image

Figure 1.13 : FSMO Roles moved.

In large network we have to ensure that we have planned for such movement.

Happy Learning

Sunder

MSEXCHANGETEAM | Ideas That Clicks

Tagged , . Bookmark the permalink.

2 Responses to Moving FSMO Roles from Windows Server 2008 R2 to Windows Server 2012 Domain Controller

  1. Shyam says:

    seems the same steps are der for windows 2k3 ..

  2. Sunder says:

    Yes, Nothing has changed.

Leave a Reply

Your email address will not be published. Required fields are marked *

* Copy This Password *

* Type Or Paste Password Here *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>