This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 37%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
HI ,
I need to change FSMO role owner of my AD LDS instance
I have created replication between old servers (a/B) and new servers (c/d)
C is having FSMO role ownwe as A . How can i change it?
when i tried Move-ADDirectoryServerOperationMasterRole command it throws error
Move-ADDirectoryServerOperationMasterRole : Cannot find directory server with identity: 'xx-xx-xx'.
Any help to change FSMO roles will be much appreciated.
Thanks in advance
You can follow along here to seize roles to another healthy domain controller.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/transfer-or-seize-fsmo-roles-in-ad-ds
--please don't forget to Accept as answer if the reply is helpful--
HI @Dave Patrick , Thanks for the reply! Yes am following that page but I'm facing below issue . ![83791-fsmo.png][1] need to change FSMO roles in schema as attached from 9002000xxxx to SOK-24-xxxx S C:\windows\system32> Move-ADDirectoryServerOperationMasterRole -Identity SOK-24-xxxx$Uxxxxxx -OperationMas erRole domainnamingmaster -Force ove-ADDirectoryServerOperationMasterRole : Unable to find a default server with Active Directory Web Services running. t line:1 char:1 Move-ADDirectoryServerOperationMasterRole -Identity SOK-24-xxxx$Uxxxxxx ... ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : ResourceUnavailable: (SOK-24-34-15:ADDirectoryServer) [Move-ADDirector...ationMasterRole ], ADServerDownException + FullyQualifiedErrorId : ActiveDirectoryServer:1355,Microsoft.ActiveDirectory.Management.Commands.MoveADDirectory ServerOperationMasterRole [1]: /api/attachments/83791-fsmo.png?platform=QnA
I'd check this one.
https://theitbros.com/unable-to-find-a-default-server-with-active-directory-web-services-running/
--please don't forget to Accept as answer if the reply is helpful--
HI @Dave Patrick ,
Thanks for the link.
I tried those commands
PS C:\windows\system32> Import-Module ActiveDirectory
PS C:\windows\system32>
Err occur from below command only
PS C:\windows\system32> Move-ADDirectoryServerOperationMasterRole -Identity SOK-24-xxxx$Uxxxxxx -OperationMasterRole
schemaMaster -Server SOK-24-xxxx:50000
Move-ADDirectoryServerOperationMasterRole : Cannot find directory server with identity: 'SOK-24-xxxx'.
At line:1 char:1
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 96%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFF%3C/text%3E%3C/svg%3E)
Hi,
Welcome to share here!
Did you tried to use the Ntdsutil to seize or transfer roles?
Still any errors?
If there are any progresses ,welcome to share here!
Best Regards,
hi @Fan Fan
Yes i tried but i get below message so i tried powershell method.
C:\Windows\System32>Ntdsutil
'Ntdsutil' is not recognized as an internal or external command,
operable program or batch file.
My issue is my AD LDS instance schema still referring to old server even after replication is stopped.
Thanks
'Ntdsutil' is not recognized as an internal or external command,
Are you trying from another healthy domain controller?
Hi @Dave Patrick , ntdsutil.exe is missing. ![84632-ntds.png][1] [1]: /api/attachments/84632-ntds.png?platform=QnA Are you trying from another healthy domain controller? Am trying in new server C. because C has the schema from A and when i check replication between C & D C default web site shows A C:\>repadmin /showrepl localhost:50000 Default-First-Site-Name**Server-A$instance1** DSA Options: (none) Site Options: (none) Thanks in advance.
Please run (old servers);
Dcdiag /v /c /d /e /s:%computername% >c:\dcdiag.log
repadmin /showrepl >C:\repl.txt
ipconfig /all > C:\dc1.txt
ipconfig /all > C:\dc2.txt
then put unzipped text files up on OneDrive and share a link.
Hi @Dave Patrick ,
There are some DC issue between old and new server as discussed here
As per Infra team, old servers has some vulnerability protocol and that has been disabled in new server so connectivity fails.
so I have done the below steps in new server
Here is the one drive link
Thanks.