You can transfer any FSMO roles with the Move-ADDirectoryServerOperationMasterRole command.
Before transferring roles always check if the domain is healthy, and replication is uninterrupted.
Pre-Transfer Checks
Run these three commands on a domain controller, and check for any errors. If any comes up fix them before proceeding with the role transfer! There might be warnings referring to error entries in the syslog. Those errors are likely already resolved, focus on existing issues with the domain controllers.
# Check domain health dcdiag /q /a # Check replication repadmin /replsum repadmin /showrepl
Transfer FSMO Roles
When everything is ready for the transfer, the following PowerShell command will facilitate the immediate transfer of the roles. I like to run the command on the domain controller I plan to transfer the role(s) to:
# Transferring all FSMO roles to the domain controller called "TargetDC" Move-ADDirectoryServerOperationMasterRole -Identity "TargetDC" -OperationMasterRole 0,1,2,3,4 ## OR # Transferring only the PDC emulator and the Infrastructure Master roles to "TargetDC" Move-ADDirectoryServerOperationMasterRole -Identity "TargetDC" -OperationMasterRole 0,2 # Roles: PDCEmulator or 0 RIDMaster or 1 InfrastructureMaster or 2 SchemaMaster or 3 DomainNamingMaster or 4
Verifying the Role Transfer
The following command lists all the five FSMO roles and their holder servers
netdom query fsmo
In out example it looks like this after the successful transfer:
Comments