Transferring FSMO Roles in Active Directory

1. Check current FSMO role holders

cmd:

netdom query fsmo

This command shows which domain controllers currently hold the five FSMO (Flexible Single Master Operations) roles.

---

2. Transfer the FSMO roles

Use PowerShell to transfer all FSMO roles to a new domain controller:

powershell:

Move-ADDirectoryServerOperationMasterRole -Identity "DC_NAME" -OperationMasterRole 0,1,2,3,4

Role numbers:

• 0 = PDC Emulator

• 1 = RID Master

• 2 = Infrastructure Master

• 3 = Schema Master

• 4 = Domain Naming Master

Example:

powershell:

Move-ADDirectoryServerOperationMasterRole -Identity "DC02" -OperationMasterRole 0,1,2,3,4

---

3. Verify the transfer

cmd:

netdom query fsmo

Check that all roles have been moved to the correct domain controller.