Active DirectoryMicrosoft Technologies

How to seize operation masters role?

If a proper DR (Disaster Recovery) plan is in place, an engineer will not needs to consider about this option at all. But it’s not a perfect IT world we living on, some business can’t afford to invest on DR. anyway, as we know AD runs with FSMO roles. Depend on the design these roles may be located on different servers and sometime all runs from one DC (which is not recommended). If this role holder servers get crashed we can’t migrate these roles over. If there is no DR plan, the only way to get this work is by seizing the operation master roles.

The utility we will use for this is ntdsutil.exe. This is very handy tool for manage and maintains active directory infrastructure.

1)    Log in to the server as domain administrator or enterprise administrator
2)    Right click on start button and select “command prompt (admin)

seize1

3)    Type ntdsutil and press enter

seize2

4)    Then type roles and press enter

seize3

5)    Type connections and press enter

seize4

6)    Then type connect to server <FQDN of role holder>

seize5

7)    Then type quit and enter

seize6

8)    In my demo I used a server which holds all the roles. To seize the roles execute following one at a time
seize schema master

seize7


seize naming master

seize8


seize RID master

seize9


seize PDC

seize10


seize infrastructure master

seize11

in each command it gives pop up to confirm if you need to do this. Confirm as yes to proceed.

9)    Type quit to exit from ntdsutil.
 
 seize12

This completes the task successfully. If you have any question about this feel free to contact me on rebeladm@live.com

Related posts
Cyber SecurityMicrosoft Entra IDMicrosoft Technologies

Step-by-Step Guide : Process Entra ID Entitlement Management Access Package on-behalf of another user (preview)

Entra ID Entitlement Management access packages enable administrators to offer a self-service…
Read more
Azure servicesMicrosoft Entra IDMicrosoft Technologies

Step-by-Step Guide: Configure Entra ID lifecycle workflow to trigger mover task on user profile changes

The Entra ID lifecycle workflow is a feature of Microsoft Entra ID identity governance and Microsoft…
Read more
Cyber SecurityMicrosoft Entra IDMicrosoft Technologies

Step-by-Step Guide: How to setup Entra ID Restricted management Administrative Units ?

In my previous blog post, I discussed what Entra ID Administrative Units are and how they can be…
Read more
Newsletter
Become a Trendsetter

Sign up and get the best of RebelAdmin, tailored for you.

Leave a Reply

Your email address will not be published. Required fields are marked *