Did this this morning, thanks. Had a problem where the schema master wouldn't move - access denied. I had to run the powershell windows as another user and give it the domain admin password, not the "right click run as administrator" one. Guess my "admin" account didn't quite have the full admin perms it needed but anyway that got it all moved. Thanks.
I usually use a user account that is in the Domain Admins security group as this should cover all the permissions required. Depending on if someone has modified permissions on the network, you might also need to be a member of the Schema Admins security group to move that role. Thanks for watching!
Hi want to ask, can i have 4 AD Server my current fsmo roles setting is : schema master - AD1 domain naming master AD1 PDC - AD2 RID - AD2 Infra Master - AD2 my environment has DFS replication issue. the GPO is not sync between the ADs. (event ID 6002 ) Should i change the PDC pointing to AD1 ?
Heads up, even though I was using an enterprise admin user I was still receiving "Access is denied." I needed to make the user a member of Schema Admins as well for this to work.
When gracefully migrating the roles, the commands can be run from either the source or target server. I don't think it really matters. If you are seizing the roles, then it needs to be run on the target server. Thanks for watching!
netdom query fsmo | show which DC hold fsmo repadmin /replsummary | check replication state, check time or if there any errors repadmin /showrepl | check replication state between all domain controllers, last attempt repadmin /queue | check if there somting in the queue before moving anything
That is Soo much better than the Old method i was taught off using the GUI
I agree, it's much better using the command line.
Thanks for watching!
Great content in your videos! Thanks!
Thanks for watching!
Thank you for this, helped a lot amazing video , plz add more and more :)
thanks sooooo much
Thanks for watching!
Thank you very much, excellent content!
Thanks for watching!
Did this this morning, thanks. Had a problem where the schema master wouldn't move - access denied. I had to run the powershell windows as another user and give it the domain admin password, not the "right click run as administrator" one. Guess my "admin" account didn't quite have the full admin perms it needed but anyway that got it all moved. Thanks.
I usually use a user account that is in the Domain Admins security group as this should cover all the permissions required.
Depending on if someone has modified permissions on the network, you might also need to be a member of the Schema Admins security group to move that role.
Thanks for watching!
Hi want to ask,
can i have 4 AD Server
my current fsmo roles setting is :
schema master - AD1
domain naming master AD1
PDC - AD2
RID - AD2
Infra Master - AD2
my environment has DFS replication issue. the GPO is not sync between the ADs. (event ID 6002 )
Should i change the PDC pointing to AD1 ?
I'm not sure what that error is, and without knowing more about how your Active Directory is setup, it's hard to suggest what to do, unfortunately.
Heads up, even though I was using an enterprise admin user I was still receiving "Access is denied." I needed to make the user a member of Schema Admins as well for this to work.
Yes, you need to be a member of the Scheme Admins to move the FSMO roles.
Thanks for watching!
I was under the impression that moving cmds were run from the "target" server. You seem to be running them from the source (primary) server.
When gracefully migrating the roles, the commands can be run from either the source or target server. I don't think it really matters.
If you are seizing the roles, then it needs to be run on the target server.
Thanks for watching!
What if the PDC has hardware failure or can’t bootup? How can I move fsmo rules in this case ADC??
In this case, you would need to seize the roles from the offline domain controller: ua-cam.com/video/u99tlYbodwg/v-deo.html
Thanks for watching!
@@danny_moran thank you so much!
netdom query fsmo | show which DC hold fsmo
repadmin /replsummary | check replication state, check time or if there any errors
repadmin /showrepl | check replication state between all domain controllers, last attempt
repadmin /queue | check if there somting in the queue before moving anything
Thanks Danny! i wanted help on how i can do it on windows server 2008
It should be the exact same process on Windows Server 2008.
Thanks for watching!
Thank you
Thanks for watching!