Home » Microsoft » 70-742 » Does this meet the goal?
Note: This question-is part of a series of questions that present the same scenario. Each question-in the series contains a unique solution that might meet the stated goals. Some question-sets might have more than one correct solution, while others might not have a correct solution.
After you answer a question-in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.
Your network contains an Active Directory domain named contoso.com. The domain contains two domain controllers named DC1 and DC2.
DC1 holds the RID master operations role. DC1 fails and cannot be repaired. You need to move the RID role to DC2.
Solution: On DC2, you open the command prompt, run ntdsutil.exe, connect to DC2, and use the Transfer RID master option.
Does this meet the goal?
A. Yes
B. No
Correct Answer: A
Explanation/Reference:
There are 2 ways of transferring FSMO roles. You can do that using graphical consoles available on a DC or any server/workstation with Administrative Tools /
Remote Server Administration Tools installed or using command-line tool called ntdsutil.
First of all you need to connect to Domain Controller to which you want to transfer FSMO roles. To do that you have to type:
ntdsutil: roles (enter)
fsmo maintenance: connections (enter) server connections: connect to server <DC-Name> (enter) server connections: quit (enter) fsmo maintenance:
Now you will be able to transfer FSMO roles to selected Domain Controller.
RID master fsmo maintenance: transfer RID master (enter) Click “Yes” button to move role.
References: http://kpytko.pl/active-directory-domain-services/transferring-fsmo-roles-from-command-line/
B
It doesn’t reach the goal. Correct answer: B
It is not possible to use the transfer command when the DC that has the function in question is offline. It is necessary to use the SEIZE command. In this case:
ntdsutil
roles
connections
connect to server DC2
quit
seize rid master
E157E158E176E177right.
Answer – A
https://theitbros.com/transfer-fsmo-roles-from-failed-domain-controller/
https://support.microsoft.com/en-us/help/255504/using-ntdsutil-exe-to-transfer-or-seize-fsmo-roles-to-a-domain-control
You must seize the RID Master role, How it is listed is correct. (A) (you can also do it with powershell using -Force)
Ans A will work only if DC1 is online.
FSMO roles should be placed in well-connected, reliable location to prevent disruption in access to them.
In tis case the DC1 is offline so Ans is B
Correct Answer B
We recommend that you transfer FSMO roles in the following scenarios:
The current role holder is operational and can be accessed on the network by the new FSMO owner.
You are gracefully demoting a domain controller that currently owns FSMO roles that you want to assign to a specific domain controller in your Active Directory forest.
The domain controller that currently owns FSMO roles is being taken offline for scheduled maintenance and you need specific FSMO roles to be assigned to a “live” domain controller. This may be required to perform operations that connect to the FSMO owner. This would be especially true for the PDC Emulator role but less true for the RID master role, the Domain naming master role and the Schema master roles.
We recommend that you seize FSMO roles in the following scenarios:
The current role holder is experiencing an operational error that prevents an FSMO-dependent operation from completing successfully and that role cannot be transferred.
A domain controller that owns an FSMO role is force-demoted by using the dcpromo /forceremoval command.
The operating system on the computer that originally owned a specific role no longer exists or has been reinstalled.