How to transfer FSMO (Flexible Single Master Operations) Roles from Windows server 2000 to Windows Server 2003

Follow this Tutorial EXACTLY STEP BY STEP and you will have an easy move.

Transfer FSMO roles and Global Catalog from win server 2000 to win server 2003

a) Transfer the FSMO Roles to the new server.

There are 5 FSMO roles: Domain naming Master, Schema Master, RID Master, PDC Emulator and Infrastructure Master. There must be a domain controller that owns each one of those roles. These roles can be transferred to another Domain Controller either by using the MMC GUI tool or by using the ntdsutil.exe command line utility. Here are the steps to transfer FSMO roles by using the MMC tool:

Transferring RID, PDC, and Infrastructure Master roles:

  • Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Users and Computers.
  • Right-click the icon next to Active Directory Users and Computers, and then click Connect to Domain Controller.

Note: If you are not on the domain controller where you want to transfer the role, you need to take this step. It is not necessary if you are connected to the domain controller whose role you want to transfer.

  • Click the domain controller, which will be the new role holder, and then click OK.
  • Right-click Active Directory Users and Computers icon and then click Operation Masters.
  • In the Change Operations Master dialog box, click the appropriate tab (RID, PDC, or Infrastructure) for the role you want to transfer.
  • You need to transfer all the 3 roles.
  • Click Change in the Change Operations Master dialog box.
  • Click OK to confirm that you want to transfer the role.
  • Click OK.
  • Click Cancel to close the dialog box.

Transferring the Domain Naming Master role:

  • Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Domains and Trusts.
  • Right-click the Active Directory Domains and Trusts icon, and then click Connect to Domain Controller.

Note: If you are not on the domain controller where you want to transfer the role, you need to take this step. It is not necessary if you are connected to the domain controller whose role you want to transfer.

  • Click the domain controller that will be the new role holder, and then click OK.
  • Right-click Active Directory Domains and Trusts, and then click Operation Masters.
  • In the Change Operations Master dialog box: click Change.
  • Click OK to confirm that you want to transfer the role.
  • Click OK.
  • Click Cancel to close the dialog box.

Transferring the Schema Master Role:

You can use the Schema Master tool to transfer the role. However, the Schmmgmt.dll dynamic-link library must be registered in order to make the Schema tool available as an MMC snap-in.

Registering the Schema Tool:

  • Click Start, and then click Run.
  • Type regsvr32 schmmgmt.dll, and then click OK. A message should be displayed stating that the registration was successful.

Transferring the Schema Master Role:

  • Click Start, click run, type mmc, and then click OK.
  • On the Console menu click Add/Remove Snap-in.
  • Click Add.
  • Click Active Directory Schema.
  • Click Add.
  • Click Close to close the Add Standalone Snap-in dialog box.
  • Click OK to add the snap-in to the console.
  • Right-click the Active Directory Schema icon, and then click Change Domain Controller.

Note: If you are not on the domain controller where you want to transfer the role, you need to take this step. It is not necessary if you are connected to the domain controller whose role you want to transfer.

  • Click Specify Domain Controller, type the name of the domain controller that will be the new role holder, and then click OK.
  • Right-click Active Directory Schema and then click Operation Masters.
  • In the Change Schema Master dialog box: click Change.
  • Click OK.
  • Click OK.
  • Click Cancel to close the dialog box.

Transfer the Global Catalogue role:

  • Click Start, point to Programs, point to Administrative Tools, and then click Active Directory Sites and Services.
  • Under sites, expand your site name, then Servers and then your server name so that you can see NTDS Settings. Now right click on the NTDS Settings under the server that you want to demote (Win2K) and choose properties, in the window that appears, un-check Global Catalog and click OK.
  • Now right click on the NTDS Settings under the server that you want to promote (Win2K3) and choose properties, in the window that appears, check Global Catalog and click OK.
  • After making these changes wait about fifteen minutes till the Global Catalog replicates between domain controllers, after it you can
  • continue with further configurations.

How to Migrate file server,DHCP Server Migration,Domain controller diagnostics from windows server 2000 to windows server 2003

6. Transfer files/permissions over win server 2003,

If you are using this server as file server you need to copy all your data in to the new win server 2003 with the following procedure.

For this purpose you can use FSMT tool on Win2K3 server (FSMT cannot be run on Win2K), which can be downloaded from the Microsoft Website. Using FSMT all the shared files and folders can be transferred from the old Win2K server to the new Win2K3 server without losing the permissions on the shared folders.

If you want complete detailed Instructions how to use FSMT Check here.

7. Take backup of win 2000 DHCP Server database.

  • Run DHCPEXIM.EXE utility from MS Resource Kit (download from here)and export the required DHCP Scope(s) and configurations to a text file and copy this file on to the new win server 2003.
  • Now, you can either disconnect the network cable or shutdown the win server 2000 completely. This server will again be used in the event of this migration failure.

8.Authorize DHCP Server on win server 2003.

  • Click Start, point to All Programs, point to Administrative Tools, and then click DHCP

Note:- You must be logged on to the server by using an account that is a member of the Administrators group. In an Active Directory domain, you must be logged on to the server by using an account that is a member of the Enterprise Administrators group.

  • In the console tree of the DHCP snap-in, expand the new DHCP server. If there is a red arrow in the lower-right corner of the server object, the server has not yet been authorized.
  • Right-click the server object, and then click Authorize. After several moments, right-click the server again, and then click Refresh. A green arrow indicates that the DHCP server is authorized.

9.Running domain controller (on win server 2003) diagnostics tools.

From the command prompt, run DCDIAGS and make sure the command is completed successfully, without displaying any errors. If you want DCdiag GUI tool check here

Run adcheck (freeware tool from netiq) run through all the checks and make sure that the domain is healthy.

Complete PDF Guide - How to transfer FSMO (Flexible Single Master Operations) Roles from Windows.

If you have moved all your roles successfully and there is nothing in the new DNS server, other words the DNS is empty, follow this guide below:

Complete Guide (pdf) - How to Convert DNS Primary Server to Active Directory Integrated. This does work for Server 2003 also.