Active DirectoryMicrosoftWindows Server

How to Transfer FSMO Roles From one Domain Controller to another Domain Controller using NTDSUTIL

Muhammad Faizan Muhammad FaizanAugust 9, 2021 - Last Updated: March 17, 2024
0 1,334 2 minutes read

Here is another tutorial on Transferring all five FSMO Roles From one Domain Controller to another Domain Controller using NTDSUTIL. In my previous article, I transfer all five FSMO roles using different GUI’s and management consoles. In this tutorial, we will be using command prompt and NTDSUTIL tool, but if you do not like to work with Command Prompt, you can use GUI to transfer all the FSMO roles.

Prerequisites of Transferring FSMO Roles

  1. As we are transferring the FSMO roles and not seizing, all the Domain Controller’s need to be online else, moving roles will not work.
  2. Your user should have Domain Administrator Privileges

Query FSMO Roles

Before we start transferring the roles, it’s a good idea to run the query command to know which server is currently holding the FSMO Roles.

Open the Command Prompt as Administrator and run the following command in it.

Recommended For You:  How to Create a New User Account in Active Directory and Assign Specific Group Memberships: Step-by-Step Guide
netdom query fsmo
Query FSMO Before Transfering

As you can see, all my FSMO roles are on the server called DC2, and I will move them to my second Domain Controller named DC1.

Runnig NTDSUTIL Utility

As your Command Prompt is still open, run the NTDSUTIL command to run the NTDSUTIL utility, as shown in the image below.

ntdsutil
Execute ntdsutil

Next, type the roles command in the command prompt.

roles
Execute roles

After that type the connections command as shown in the screenshot below.

connections
Executes Connections

Now we need to know the name of the other Domain Controller who will hold all the FSMO roles. In my case, my second DC name is DC2. Once you find the name of the server, enter the following command in the command prompt.

Connect to server DC1

Ensure that you are connected to the new server as shown in the image below.

Connect to new server

after that, type Quit to exit the connection mode.

quit
Quit from Connections

Transferring all FSMO roles using NTDSUTIL

Now we are ready to enter the transferring commands. In my case, I will be transferring all the FSMO roles, but you can move one or all the FSMO roles it all depends on your needs.

Recommended For You:  Automating Virtual Machine Resource Scaling in Hyper-V with PowerShell

Transferring RID Master Role

Enter the following command in the command prompt to transfer RID master role to the previously connected server, which in my case is DC1. Once you enter the command, it will ask you to press Yes to confirm. 

transfer rid master
Transfer Rid Master

Successfully Transferred

Successfully Transfer Rid Master

Transferring PDC Role

Enter the following command in your command prompt to transfer the PDC role and press Yes to confirm.

transfer pdc master
Trasnfer PDC

Successfully Transferred

Successfully Transfer PDC

Transferring Infrastructure Master Role

Next, enter the following command to transfer Infrastructure Master Role and press Yes to confirm.

transfer infrastructure master
Transfer Infrastructure Master

Successfully Transferred

Successfully Transfer Infrastructure Master

Transferring Schema Master Role

Next, enter the following command to transfer Schema Master Role and press Yes to confirm.

transfer schema master
Transfer Schema Master

Successfully Transferred

Successfully Transfer Schema Master

Transferring Domain Naming Master Role

Lastly, enter the following command in the command prompt to transfer the Domain Naming Master role and click Yes to confirm the transfer.

transfer naming master
Transfer Naming Master

Successfully Transferred

Successfully Transfer Naming Master

Now all the FSMO roles are transferred from DC2 to DC1, so type Quit twice in the command prompt and hit Enter twice to close the ntdsutil.

quit
Quit from FSMO Maintenance and NTDSUTIL

Let’s rerun the FSMO Query command to make sure it’s showing correct results.

netdom query fsmo
Query FSMO After Transferring all roles

As you can see, all the FSMO roles have been transferred to DC1, which is my new Domain Controller.

That’s all for this tutorial, and if you want to learn more, bookmark MCSAGURU.

Tags
Muhammad Faizan Muhammad FaizanAugust 9, 2021 - Last Updated: March 17, 2024
0 1,334 2 minutes read
Muhammad Faizan

Muhammad Faizan

Hi, My name is Muhammad Faizan and i have spent last 15 years working as System Administrator mainly with Microsoft Technologies. I am MCSE, MCTP, MCITP, certified professional. I love scripting and Powershell is the scripting language i am in love with.

Related Articles

Monitoring Virtual Machine Performance Metrics in Hyper-V Using PowerShell Commands

Monitoring Virtual Machine Performance Metrics in Hyper-V Using PowerShell Commands

6 days ago - Last Updated: March 17, 2024
Generating a Hyper-V VM Report: A PowerShell Scripting Guide

Generating a Hyper-V VM Report: A PowerShell Scripting Guide

4 weeks ago - Last Updated: April 6, 2024
NicTeaming

How to enable NIC Teaming in windows 10 Using PowerShell

December 24, 2019 - Last Updated: March 19, 2024
retrieve-exchange-read-receipts-graph-powershell

Retrieve & Analyze Exchange Online Read Receipts with Microsoft Graph & PowerShell

3 weeks ago - Last Updated: April 6, 2024

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button