FSMO(Flexible Single

Master Operation)
FSMO(Flexible Single Master Operation)
Forest Wide
Schema Master
Domain Naming Master
Domain Wide
Primary Domain
RID Master
Infrastructure Master
Schema Master:
Responsible for schema updates
Only DC that can process schema update
After update, replicates changes to other DCs
If this Operations master is unavailable, no schema changes can be
made
Regsvr32 schmmgmt.dll
Domain Naming Master:
It’s responsible for adding or removing of domain in the forest
Without this rule we can’t add or remove the domain in the
forest.
Domain Naming Master must also be a global Catalog server
PDC Emulator:

It’s act as PDC for NT based BDC’S

Time synchronization is done by PDC Emulator

Password lockout is process done by PDC Emulator

Password changes replicated preferentially to PDC emulator,
Authentication failures due to bad password at another DC forwarded to
PDC emulator before failing completely
RID Master:

RID master is responsible for allocating sequence of RID ranges to all the
domain controller in the domain .

Object move should be initiated in RID master.

Object SID= Domain SID + RID

It’s maintains uniqueness.

It maintains the RID uniqueness even after moving the objects across the
domain.
Infrastructure Master:

It is responsible cross domain object reference.

It update group to user reference Whenever the user is renamed or
moved. E.g. group in one domain referencing user or group in another
domain
Access Control:
View the FSMO rules
Netdom Query fsmo
Replmon tool
c:\windows> ntdsutill
ntdsutill: roles
fsmo maintenance: connect to the <server name>