Working with Windows Active Direcory, transferring FSMO roles from one DC to another.

Today I had to move the fsmo-roles, and phase out an old DC.
These days you can powershell it.

Since you are working with Active Directory, log in as an admin user, fire up powershell and a do a:

Import-Module ActiveDirectory

Get the roles with:

Get-ADDomain | Select-Object InfrastructureMaster,PDCEmulator,RIDMaster | Format-List
Get-ADForest | Select-Object DomainNamingMaster,SchemaMaster | Format-List

Move the roles with:

Move-ADDirectoryServerOperationMasterRole -OperationMasterRole DomainNamingMaster,PDCEmulator,RIDMaster,SchemaMaster,InfrastructureMaster -Identity DC01

Then get the roles again to see if they moved.

Done.

It’s not everyday I have to do this, so I had to look it up myself.
The three mega-important commands displayed here for my and perhaps your convience.

You may sometimes even forget these roles exist, but without them, the domain would break.

Hope this helps you,

Cheers.

This entry was posted in Active Directory, fsmo, powershell. Bookmark the permalink.