Going by the “If it aint broke don’t
fix it” adage or the idea of “Don’t mess with the production
environment while IN production” I would still say leave the FSMO roles
where they are.
If you want to try or tinker with or test –
transferring or (actually) seizing FSMO roles – set up a test environment
and give it a whirl ( if you have the resources.)
From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx
[mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On
Behalf Of neil.ruston@xxxxxxxxxxxxx
Sent: Tuesday, November 29, 2005
11:03 AM
To: ActiveDir@xxxxxxxxxxxxxxxxxx
Subject: RE: [ActiveDir] FSMO role
transfer
Sorry, but for peace of mind, I *would*
transfer the roles. If there is opportunity to do so, then why not transfer?
It's a trivial task and will take no time to replicate (assuming the other DC
is in the same site).
More worrying perhaps, is the fact that if
clients point to one (or both) DCs for DNS name resolution, then they may
experience issues when one of the machines is taken down.
Hopefully, the poster has considered this
latter scenario.
hth,
neil
From:
ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Craig Cerino
Sent: 29 November 2005 15:54
To: ActiveDir@xxxxxxxxxxxxxxxxxx
Subject: RE: [ActiveDir] FSMO role
transfer
Amy,
If it’s what you
need to hear (for peace of mind – or reassurance) leave the FSMO roles
where they are - you’ll be fine. You don’t need to transfer
the rolls if your talking about a timeframe of 2 hours - - -when you bring it
back on line - -I would just leave the other DC online for at least and hour
(unless you have adjusted the replication intervals) to make sure any changes
are replicated.
From:
ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Amy Hunter
Sent: Tuesday, November 29, 2005
10:43 AM
To: ActiveDir@xxxxxxxxxxxxxxxxxx
Subject: [ActiveDir] FSMO role
transfer
We have two DC's, one which holds the Forest FSMO roles, the other
which holds the domain FSMO roles.
I plan to take each server down at different times so that one
of the two servers can provide authentication etc while the other
gets maintained.
Initially, I was planning on moving the FSMO roles to the other DC
while maintainance work is carried out and transferring it back once it's
online again. I would then do the same for the other DC.
I was then told that you don't need to move the FSMO roles when
you perform maintenance on a DC holding the roles. Each server
will be down for about 2hrs.
Does anyone have advice for me? I would like to move the roles for
peace of mind knowing they are available, but if I don't need to do that, I
won't bother
Is there any recommended practice?
To help you stay safe and secure online, we've developed the
all new Yahoo! Security Centre.
PLEASE READ: The information contained in this email is
confidential and
intended for the named recipient(s) only. If you are not an
intended
recipient of this email please notify the sender immediately
and delete your
copy from your system. You must not copy, distribute or take
any further
action in reliance on it. Email is not a secure method of
communication and
Nomura International plc ('NIplc') will not, to the extent
permitted by law,
accept responsibility or liability for (a) the accuracy or
completeness of,
or (b) the presence of any virus, worm or similar malicious
or disabling
code in, this message or any attachment(s) to it. If
verification of this
email is sought then please request a hard copy. Unless
otherwise stated
this email: (1) is not, and should not be treated or relied
upon as,
investment research; (2) contains views or opinions that are
solely those of
the author and do not necessarily represent those of NIplc;
(3) is intended
for informational purposes only and is not a recommendation,
solicitation or
offer to buy or sell securities or related financial
instruments. NIplc
does not provide investment services to private customers. Authorised
and
regulated by the Financial Services Authority. Registered in
England
no. 1550505 VAT No. 447 2492 35. Registered Office: 1 St Martin's-le-Grand,
London, EC1A 4NP. A member of the
Nomura group of companies.
