Bueno hasta el momento lo que e investigado.
Tengo un Controlador de Dominio llamado "SERVIDOR" con Zentyal 5.0.
Un Controlador de Dominio adicional al que lo voy a cambiar a principal llamado "DC2" con Zentyal 6.0
Básicamente tengo que transferir los Roles y los Papeles al DC2.
Luego desde el mismo Controlador de Dominio adicional ejecutar el comando para ver quien tiene los roles.
sudo samba-tool fsmo show
Debe aparece 7 Roles, algo como esto:
SchemaMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
InfrastructureMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
RidAllocationMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
DomainNamingMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=SERVIDOR,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
Para Transferir los Roles debemos ejecutar el siguiente comando:
sudo samba-tool fsmo transfer --role=all -U administrator
Verificamos que todos los roles se transfirieron correctamente:
sudo samba-tool fsmo show
SchemaMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
InfrastructureMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
RidAllocationMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
PdcEmulationMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
DomainNamingMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
DomainDnsZonesMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
ForestDnsZonesMasterRole owner: CN=NTDS Settings,CN=DC2,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=savidoca,DC=com
Para Transferir los Papeles debemos ejecutar el siguiente comando:
sudo samba-tool fsmo seize --role=all -U administrator
Attempting transfer...
This DC already has the 'rid' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'pdc' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'naming' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'infrastructure' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'schema' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'domaindns' FSMO role
Transfer successful, not seizing role
Attempting transfer...
This DC already has the 'forestdns' FSMO role
Transfer successful, not seizing role
Ahora debemos demoler en antiguo controlador de dominio.
entramos desde la consola del antiguo controlador de dominio y escribimos el comando:
sudo samba-tool domain demote -U administrator