Moving a s4 DC to a different host

Matthieu Patou mat at
Thu Oct 18 01:17:35 MDT 2012

On 10/16/2012 10:50 PM, Marc Muehlfeld wrote:
> Am 17.10.2012 04:59, schrieb Andrew Bartlett:
>> Pretty much.  You may need to move the fsmo roles across before the
>> demote, otherwise it can fail.
> Thanks for that information.
> But I have some more questions:
> - Can this only be done on windows side via ntdsutil.exe? Or on samba 
> side, too?
> - If I see later on windows side the new server name for all 5 owners 
> in the output of "netdom query /domain:... fsmo", then everything is 
> successfully?
> - Is there anything I have to consider about DNS? Or do the IP of the 
> new DC is automatically added to samba4/bind when I join and the one 
> of the old DC is removed on demote?
You might consider saving the idmap.ldb also to keep the same uid/gid 
across the server be sure to backup the extended attributes and backup 
by names rather than by uid/gid.


Matthieu Patou
Samba Team

More information about the samba-technical mailing list