In the following article, we will describe how to transfer FSMO roles on Windows Server 2016 Domain Controller using GUI (graphical user interface).
FSMO abbreviation means Flexible Single Master Operation. There are 5 FSMO roles that can be transferred from one DC to another:
Schema Master role
Domain Naming Master role
RID Master role
PDC Emulator role
Infrastructure Master role
We will start with transferring RID, PDC, and Infrastructure FSMO role to a different DC in a domain. For this purpose domain administrator permission is required.
Login to DC on which you want to transfer FSMO roles. Open Active Directory Users and Computers and right-click on the Domain Name. Now click on the Operations Masters.
On the RID tab click Change to transfer the RID FSMO role to that server. Repeat this action for PDC and Infrastructure roles by changing tabs in the same window.
Now, we should open Active Directory Domains and Trusts and right-click on the domain name and select again Operations Masters.
Change the Domain Naming Operations Master just as you have changed it previously in Active Directory Users and Computer snap-in.
Once done, you should receive “The operations master was successfully transferred” message.
We only have one role left to change and that is Schema Master role. To achieve this, we have to register the Schema Master dll.
In the RUN prompt or CMD prompt type the following command line and hit enter:
regsvr32 schmmgmt.dll
Once done, open MMC console (mmc.exe). Click File and then Add/Remove Snap-in. From the list of available Snap-ins select Active Directory Schema and click Add.
Click OK.
Right-click on the Active Directory Schema and then Change Active Directory Domain Controller.
Select the desired Domain Controller and click OK.
You might receive the following message: Just click OK.
Now right-click again on the Active Directory Schema and select Operations Masters. In the Change Schema Master window click to change the Schema Master role.
That’s it! You may check that you have transferred all FSMO roles by running the following command from any DC or another machine that is a member of the target domain:
netdom query fsmo
Comments are welcome!