How to seize Operations Master (FSMO) roles using ntdsutil tool

In some special cases, as shown below, we cannot trasfer the Operations Master (FSMO) roles from one Domain Controller to another Domain Controller .

• A Domain Controller that currently owns an Operations Master (FSMO) role is demoted forcefully by using the dcpromo /forceremoval command.

• The Operations Master role holder is experiencing an operational error that prevents an FSMO-dependent operation from completing successfully and that role cannot be transferred.

• The operating system on the computer that originally owned a specific Operations Master (FSMO) role no longer exists.

The Ntdsutil tool allows you to transfer and seize operations master roles. When you use the Ntdsutil command-line tool to seize an operations master role, the tool attempts a transfer from the current role owner first. Then, if the existing operations master is unavailable, it performs the seizure.

• Click Start, and then click Command Prompt.

• At the command prompt, type ntdsutil and hit ENTER.

• At the ntdsutil prompt, type roles and hit ENTER.

• At the fsmo maintenance prompt, type connections and hit ENTER.

• At the server connections prompt, type connect to server, followed by the fully qualified domain name (FQDN), and press ENTER.

• At the server connections prompt, type quit and hit ENTER.

• At the fsmo maintenance prompt, type one of the following and hit ENTER:

o seize schema master

o seize domain naming master

o seize RID master

o seize PDC

o seize infrastructure master

• At the fsmo maintenance prompt, type quit and hit ENTER.

• At the ntdsutil prompt, type quit and hit ENTER.