Use ADSI Edit to Manage an AD LDS Instance
Updated: December 30, 2008
Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012
ADSI Edit is a Microsoft Management Console (MMC) snap-in for general administration of Active Directory Lightweight Directory Services (AD LDS). It is installed as part of the AD LDS server role. To use ADSI Edit to administer an AD LDS instance, you must first connect and bind to the instance. You can administer containers and objects in the instance by browsing to the containers or objects and then right-clicking them.
Membership in the Administrators group of the AD LDS instance is the minimum required to complete this procedure. By default, the security principal that you specify as the AD LDS administrator during AD LDS setup becomes a member of the Administrators group in the configuration partition. For more information about AD LDS groups, see Understanding AD LDS Users and Groups.
To connect and bind to an AD LDS instance using ADSI Edit
Open ADSI Edit.
In the console tree, click ADSI Edit .
On the Action menu, click Connect to .
In Select or type a domain or server: (Server | Domain[:port] , type the Domain Name Service (DNS) name, NetBIOS name, or IP address of the computer on which the AD LDS instance is running, followed by a colon (:) and the Lightweight Directory Access Protocol (LDAP) communication port that the AD LDS instance to which you want to connect is using.
Note If you have previously connected to the instance on this computer, the server and port might already be in the list.
Under Connection point , do one of the following:
Select or type a distinguished name (DN) or naming context
, and then specify the distinguished name to which you want to connect.
Select a well-known naming context
, and then click
- Click Select or type a distinguished name (DN) or naming context , and then specify the distinguished name to which you want to connect.
To connect with an alternative account, click Advanced ; click Specify Credentials ; and then, under Connect using these credentials , type the domain, user name, and password of the account.
To open ADSI Edit, on a computer with the AD LDS server role installed, click
, and then click
To create additional connections to AD LDS instances, on the
for each new connection.
The default communication port for LDAP is 389.
To connect to an AD LDS instance running on the local computer, type
as the server name.