How to Transfer FSMO Roles and Time Server Roles to new Domain Controller

Today, I am going to show you how to step by step transfer FSMO roles to new domain controller server, and transfer time server role from the old domain controller to new domain controller.

In my case, the old DC server is DC02 and new server is DC01.

Transfer FSMO Role

1.Login to domain controller server.

2.Open an elevated command prompt.

3.Type Following command to verify FSMO roles

netdom query fsmo

4.Type ntdsutil and press Enter.

5.At the ntdsutil: prompt, type roles and press Enter.

6.At the fsmo maintenance: prompt, type connections and press Enter.

7.At the server connections: prompt, type connect to server DC01 and press Enter.

(DC01 is the new AD DC Roles server)

8. At the server connections: prompt, type quit, press Enter.

9.At fsmo maintenance: prompt, type transfer schema master and press Enter.

10.On the Role Transfer Confirm Dialog, click Yes.

11.At fsmo maintenance: prompt, type transfer naming master and press Enter.

12.On the Role Transfer Confirm Dialog, click Yes.

13.At fsmo maintenance: prompt, type transfer rid master and press Enter.

14.On the Role Transfer Confirm Dialog, click Yes.

15.At fsmo maintenance: prompt, type transfer infrastructure master and press Enter.

16.On the Role Transfer Confirm Dialog, click Yes.

17.t fsmo maintenance: prompt, type transfer PDC and press Enter.

18.On the Role Transfer Confirm Dialog, click Yes.

19.At fsmo maintenance: prompt, type quit and press Enter.

20.At ntdsutil prompt, type quit and press Enter.

21.Type netdom query fsmo command to verify fsmo roles.

Transfer Time Server to another Domain controller

1.Login to the old PDC domain controller server.

2.Open an elevated command prompt.

3.Run following command to stop as time server and sync with new time server and remove this DC a reliable time source for the clients.

w32tm /config /syncfromflags:domhier /reliable:no /update

net stop w32time & net start w32time

4.Login to the new PDC domain controller server.

5.Open an elevated command prompt.

6.Run following command to sync with NTP servers and make this DC a reliable time source for the clients.

w32tm /config /manualpeerlist:”0.ca.pool.ntp.org 1.ca.pool.ntp.org 2.ca.pool.ntp.org 3.ca.pool.ntp.org” /syncfromflags:manual /reliable:yes /update

net stop w32time & net start w32time

7.Run following command to verify configuration.

w32tm /query /configuration

w32tm /query /source

w32tm /query /peers

w32tm /query /status

Hope you enjoy this post.

Cary Sun

Twitter: @SifuSun

Web Site: carysun.com

Blog Site: checkyourlogs.net

Blog Site: gooddealmart.com

Leave a Reply