Seize Schema Master fails via GUI and CMD

2 Win2003 DCs
Beast1 = The origional role master holder with AD, DNS, DHCP
Beast2 = grunt backup for AD, DNS, and king of the Web servers.(IIS)

Beast1 died after installing SP1 (go figure..) it's DEAD....
Just before it's demise, I was able to transfer RID,PDC, and Ifra.
As rigor mortis was setting in, I was able to seize the DNM.

Now, I am reinstalling and preparing to bring up a new DC. but I can't seem
to get
Beast2 to grab the schema master role. In the Operations Masters screen it
says
ERROR , and beast2 is listed on the bottom box, but the Change button is
grayed out.
I also tried using the command line. Here's what I keep getting after 24
hours of
waiting for AD to "do it's thing". I am logged on as the Enterprise Domain
Admin.

%<-----snip ------------->

server connections: connect to server beast2
Binding to beast2 ...
Connected to beast2 using credentials of locally logged on user.
server connections: quit
fsmo maintenance: seize schema master
Attempting safe transfer of schema FSMO before seizure.
ldap_modify_sW error 0x32(50 (Insufficient Rights).
Ldap extended error message is 00002098: SecErr: DSID-03151D7D, problem 4003
(IN
SUFF_ACCESS_RIGHTS), data 0

Win32 error returned is 0x2098(Insufficient access rights to perform the
operation.)
)
Depending on the error code this may indicate a connection,
ldap, or role transfer error.
Transfer of schema FSMO failed, proceeding with seizure ...
ldap_modify of SD failed with 0x32(50 (Insufficient Rights).
Ldap extended error message is 00000005: SecErr: DSID-03151E04, problem 4003
(IN
SUFF_ACCESS_RIGHTS), data 0

Win32 error returned is 0x5(Access is denied.)
)
fsmo maintenance:

%<-----snip -------------

Any words of wizdom here?





For your protection, all outgoing email is scanned by Norton...
.... and it says I'm bad.......


.