Scenario/Problem: Each
Active Directory Domain Services forest has a single domain controller
that is authoritative for the schema. This domain controller is called
the schema master
and is responsible for performing updates to the directory schema. This
role can be enabled on only a single domain controller in the forest
root domain. When you first install AD DS, the first domain controller
you introduce into the forest holds this role. You might need to
transfer this role from one domain controller to another.
Solution: The schema master operations master role can be transferred by using the Windows interface or the command line.
Transfer the Schema Master Role by Using the Windows Interface
To transfer the schema master role by using the Windows interface, perform the following steps:
1. | Log on to a domain controller or a member computer that has Windows Server 2008 RSAT installed.
|
2. | Click Start, click Administrative Tools, and then click Active Directory Schema.
Tip
The Active Directory Schema Snap-in is not installed by default.
|
3. | Right-click
the Active Directory Schema node in the console tree and select Change
Active Directory Domain Controller, as shown in Figure 1.
|
4. | On
the Change Directory Server page, select the domain controller to which
you want to transfer the schema master role; then click OK.
|
5. | A warning displays stating that the snap-in is not connected to the schema master, as shown in Figure 2. Click OK.
|
6. | Right-click the Active Directory Schema node in the console tree and select Operations Master.
|
7. | On
the Change Schema Master window, ensure the domain controller you
selected in Step 4 is listed as the targeted server, as shown in Figure 3; then click Change.
|
8. | In the confirmation box, click Yes.
|
9. | A message that indicates the operation completed successfully displays, as shown in Figure 4.
|
Transfer the Schema Master Role by Using the Command Line
To transfer the schema master role by using the command line, perform the following steps:
1. | Log on to a domain controller.
|
2. | Click Start, and click Command Prompt.
|
3. | In the Command Prompt window, type ntdsutil and press Enter.
|
4. | At the ntdsutil command prompt, type roles and press Enter.
|
5. | At the fsmo maintenance command prompt, type connections and press Enter.
|
6. | At the fsmo maintenance command prompt, type connect to server
DomainController, where DomainController is the domain controller you want to transfer the role to; then press Enter.
|
7. | At the server connections command prompt, type quit and press Enter.
|
8. | At the fsmo maintenance command prompt, type transfer schema master and press Enter.
|
