Modify the service account used by an ADAM instance
Applies To: Windows Server 2003 R2
To modify the service account used by an ADAM instance
Open an ADAM tools command prompt.
At the command prompt, type:
net stop instancename
where instancename represents the service name of the ADAM instance on which you want to change the service account.
At the command prompt, type:
dsdbutil
At the dsdbutil: prompt, type:
activate instance instancename
where instancename represents the service name of the ADAM instance on which you want to change the service account.
At the dsdbutil: prompt, type:
change service account accountname password
where accountname password represents the account name and password of the account to be used as the ADAM service account.
To exit dsdbutil, at the dsdbutil: prompt, type:
quit
At the command prompt, type:
net start instancename
to restart the ADAM instance.
Notes
To open an ADAM tools command prompt, click Start, point to All Programs, point to ADAM, and then click ADAM Tools Command Prompt.
When you specify a workstation or domain user account as the service account, the specified account must possess the Log on as a service right. To assign the Log on as a service right to an account, you must edit the security setting on the appropriate Group Policy object (GPO). For more information, see Related Topics.
The service account that you select must have permission to read and write the ADAM data and log files located in %ProgramFiles%\Microsoft ADAM\instancename.
The service account that you select may depend on whether the ADAM instance participates in a configuration set and also on the replication security level. For more information, see Related Topics.
See Also
Concepts
Add the Log on as a service right to an account
Administering replication and configuration sets
Understanding ADAM replication and configuration sets
Selecting an ADAM service account