Exam 70-742 topic 1 question 105 discussion

The DC has failed, you can't transfer the role but you can seize it. The given answer is therefore wrong

agree with post above ... you need to seize role if original ownwer ist offline

if you try a transfer, it will fail purely because the other DC is offline. You need to either use the -force parameter in powershell or 'seize' the role from ntdsutil. answer = b

The stated specifics of the solution are also messy.

Answer is B - for sure. You cannot transfer FSMO roles from a DC that is failed, it has to be seize. Anything I am missing here?

Answer is NO, it should be seized. https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/transfer-or-seize-fsmo-roles-in-ad-ds

The answer is wrong - you need to run ntdsutil with the seize option, not transfer. the DC has failed. from: https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/transfer-or-seize-fsmo-roles-in-ad-ds To seize the RID master role, type seize rid master.

Answer is B We recommend that you transfer FSMO roles in the following scenarios: The current role holder is operational and can be accessed on the network by the new FSMO owner. You are gracefully demoting a DC that currently owns FSMO roles that you want to assign to a specific DC in your Active Directory forest. The DC that currently owns FSMO roles is being taken offline for scheduled maintenance, and you have to assign specific FSMO roles to live DCs. You may have to transfer roles to perform operations that affect the FSMO owner. This is especially true for the PDC Emulator role. This is a less important issue for the RID master role, the Domain naming master role, and the Schema master roles. We recommend that you seize FSMO roles in the following scenarios: The current role holder is experiencing an operational error that prevents an FSMO-dependent operation from completing successfully, and you cannot transfer the role. https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/transfer-or-seize-fsmo-roles-in-ad-ds

The answer is correct. On DC2, you open the command prompt, run ntdsutil.exe, connect to DC2, and use the Transfer RID master option.

The Answer should be NO. The reference is in the next question: "This would work if DC1 was still online. In that case we would be "transferring" the role. However, as DC1 is offline, we need to "seize" the role which can only be done by using the ntdsutil command or the Move-AddirectoryServerOperationMasterRole PowerShell cmdlet with the -Force parameter."

Answer is B

Should be B The suggestion is to: use the Transfer RID-master option. You need to seize the Ridmaster so the answer should be use the Seize RID-master option.

As DC1 is offline, we need to “seize” the role which can only be done by using the ntdsutil command or the Move-AddirectoryServerOperationMasterRole PowerShell cmdlet with the -Force parameter.

You can seize with ntdsutil https://www.dtonias.com/seize-fsmo-roles-domain-controller/

The answer is correct, you can also transfer the RID Mayer using PowerShell Move-ADDirectoryServerOperationMasterRole -Identity USER04-DC1 -OperationMasterRole RIDMaster,InfrastructureMaster,DomainNamingMaster -Force Even the machine currently hold the RIDmater is down. You won’t enable to transfer the schema forest master if the machine is down.

I believe answer is Yes. Yes its right that first you need to seize the role, but u can seize the role with NTDSUTIL https://www.petri.com/seizing_fsmo_roles

You can do this with ntdsutil, but "seize" and "transfer" are different options. In this case you would need to seize the role, so transfer is incorrect