[Samba] Problems Transferring FSMO Roles

Sun Aug 4 15:16:10 UTC 2019

On 04/08/2019 15:21, Marcio Demetrio Bacci via samba wrote:
> Hi,
>
> This way don't works too.
>
> root at samba4-dc:~# samba-tool fsmo transfer --role=forestdns -Uadministrator
> Password for [EMPRESA\administrator]:
> ERROR: Failed to add role 'forestdns': LDAP error 53
> LDAP_UNWILLING_TO_PERFORM -  <000020AE: SvcErr: DSID-03152BF7, problem 5003
> (WILL_NOT_PERFORM), data 0

Well that is how it is supposed to work, in fact, if you enter 
'samba-tool fsmo transfer --help' it prints amongst the output:

--role=ROLE           The FSMO role to seize or transfer.
                         .......................
                         .....................
                         .................
                         ..............
                         domaindns=DomainDnsZonesMasterRole
                         forestdns=ForestDnsZonesMasterRole all=all of the
                         above  You must provide an Admin user and password.

So, even though it shouldn't matter, try it with '-U Administrator'

I take it that Administrator exists (hasn't been renamed or removed) and 
you are using the correct password, I also hope that you haven't given 
Administrator a uidNumber attribute.

Rowland