De Wiki inetshell
Saltar a: navegación, buscar

La documentacion de Active Directory solo menciona 5 roles FSMO, sin embargo, existen 7 roles. Para transferir los roles faltantes:


https://web.archive.org/web/20190806221629/http://www.more2know.nl/2011/04/

Change the ForestDnsZone fSMORoleOwner

    Run Adsiedit.msc
    Connect to the server which hold the infrastructure Role
    Connect to DC=ForestDnsZones,DC=<domain>,DC=<suffix>.
    Open the properties for the Infrastructure object.
    Check the fSMORoleOwner attribute.
    Specify an infrastructure role owner that is online for the partition. You can do this by manually modifying the fSMORoleOwner attribute on the object.

The value is formatted like:

CN=NTDS Settings,CN=<hostname>,CN=Servers,CN=<sitename>,CN=Sites, CN=Configuration,DC=domain,DC=local
Change the DomainDnsZone fSMORoleOwner

    Run Adsiedit.msc
    Connect to the server which hold the infrastructure Role
    Connect to DC=DomainDnsZones,DC=<domain>,DC=<suffix>.
    Open the properties for the Infrastructure object.
    Check the fSMORoleOwner attribute.
    Specify an infrastructure role owner that is online for the partition. You can do this by manually modifying the fSMORoleOwner attribute on the object.

    The value is formatted like:
    CN=NTDS Settings,CN=<hostname>,CN=Servers,CN=<sitename>,CN=Sites, CN=Configuration,DC=domain,DC=local

!! Note. You need to connect to the DC that currently is the Infrastructure FSMO. If you connect to any other DC you will get a error message saying “000020Ae: svcErr:DSID-031524F1, problem 5003 (WILL_NOT_PERFORM), data 0”