Active Directory operations master

In the work, we often encounter the unexpected situation of server failure, once encountered this situation, we have to do is to check that the operation of the host is not on the fault server, if not good, if found on the fault server, how can we transfer the operations master?

Before the specific steps, let us introduce what is the operation of the master.

Operations master, also known as FSMO, including RID master, PDC host, infrastructure master, domain host, schema master

RID master: Used to generate the user's sid,sid= domain (native) Id+rid, then, how to view the SID, here is a command to view the SID; Enter Whoami/user in command line mode to view SID

PDC Host: 1. Compatible with older operating systems (NT); 2. Accelerate replication of emergency data; 3. Time synchronization within the domain. All clients within the domain synchronize time with the local PDC host.

Infrastructure Master: Maintains updates for cross-domain objects (for example, users of Domain A, in groups of Domain B joined)

Domain host: The role is to maintain the creation or deletion of the domain is, the uniqueness of the domain name.

Schema master: Stores the familiarity of objects within an entire architecture.

Of these five operations hosts, three operations hosts are domain-level, namely the RID master, the PDC master, and the infrastructure master. The so-called domain level, that is, each domain has only a single RID master, the PDC host, the infrastructure master, if a forest, have more than one domain, then there will be more than one RID master, PDC host, Infrastructure master, RID master, PDC master, the infrastructure master is unique in the domain.

In five operations hosts, three domain-level operations masters are removed, and two forest-level operations hosts are domain hosts, schema hosts, respectively. The so-called forest level, is a forest can only have a domain host, the schema master, regardless of the number of domains in the forest, there is only one domain host, the schema master, the domain host, the schema master in the forest is unique.

So, how should we find the operations master (FSMO) that is the RID master, the PDC host, the infrastructure master, the domain host, the architecture master, which five hosts?

Here are two ways for you to choose.

instance one: Identify the FSMO in the current domain through a graphical interface

Just mentioned, there are three host is the domain level, in fact, this three hosts, is together, we can find together.

First Open Server Manager, select Tools, Active direciory (AD) Users and Computers, click Open

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M01/6C/2B/wKioL1VBlDKD5ZrvAAInLKewP8o827.jpg" width= "644" height= "416"/>

Right-click the domain name and you will see an option called Operations master, click Open

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M02/6C/2B/wKioL1VBlDLwGEnGAAG6JjIXxhw841.jpg" width= "644" height= "452"/>

After opening we will see the RID master, the PDC host, the infrastructure master, as shown in

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M00/6C/2B/wKioL1VBlDPBYwQGAAD9Bis_kyY157.jpg" width= "428" height= "484"/>

The domain host and schema master are forest-level, so there are different places, domain RID masters, PDC hosts, and infrastructure hosts.

Open Server Manager, select Tools, locate the ad domain and trust relationship, click Open

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M01/6C/2B/wKioL1VBlDPRjjZcAAI0GSIYDJ8542.jpg" width= "644" height= "420"/>

Right-click the ad Domain and trust relationship and we'll see an option called Operations master, click Open.

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M02/6C/2B/wKioL1VBlDPRjAf3AAEody5c4Pk310.jpg" width= "644" height= "399"/>

After opening we will see the domain host, such as.

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M00/6C/2B/wKioL1VBlDOQXhudAAF6ZkpmjFI178.jpg" width= "613" height= "484"/>

Next is the schema master, which is also the forest level, but the schema master is the deepest hidden relative to the domain host.

First, we want to run in the command line mode, regsvr32 schmmgmt.dll This command is used to register the schema host dynamic link library, we cannot find the schema master without executing this command.

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M01/6C/2B/wKioL1VBlDPB9-IHAAFXVuXFQUY086.jpg" width= "644" height= "423"/>

Then press and hold the Windows key +r key, open run, enter MMC, carriage return, go to console root node

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M02/6C/2B/wKioL1VBlDST59M9AADZ7DeMj1c161.jpg" width= "644" height= "287"/>

Click File, select Add or Remove Snap-in

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M00/6C/2B/wKioL1VBlDSxYbDGAAFIJeW0m9Y476.jpg" width= "480" height= "484"/>

Select AD Schema, click Add, and determine

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M01/6C/2B/wKioL1VBlDTCFx4aAAIZn16Z4Qc386.jpg" width= "550" height= "484"/>

Right-click on AD schema, we can see an option called Operations master, click Open

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M02/6C/2B/wKioL1VBlDWjDtWWAAFkF4U2Emw062.jpg" width= "468" height= "484"/>

Once opened, we can see the schema master.

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M00/6C/2B/wKioL1VBlDXSvR57AAGbdKnmFao161.jpg" width= "596" height= "484"/>

Example Two: Viewing the operations master (FSMO) in the current domain from the command line

Compared with the image to see the operations master, with the command line to view, relatively simple a lot, in order to need a command.

Press and hold the Windows key +r, enter cmd, enter command line mode, enter netdom query FSMO to view all operations masters as shown in.

650) this.width=650; "title=" image "style=" border-right-width:0px;border-bottom-width:0px;border-top-width:0px; " Border= "0" alt= "image" Src= "http://s3.51cto.com/wyfs02/M01/6C/2B/wKioL1VBlDXRRb97AAE3AJVCBic393.jpg" width= "644" height= "422"/>

This article is from the "Zhangxiao C" blog, be sure to keep this source http://zhangcong.blog.51cto.com/10005154/1640773

Active Directory operations master