Modify the service account used by an ADAM instance

Applies To: Windows Server 2003 R2

Open an ADAM tools command prompt.
At the command prompt, type:

net stop instancename

where instancename represents the service name of the ADAM instance on which you want to change the service account.
At the command prompt, type:

dsdbutil
At the dsdbutil: prompt, type:

activate instance instancename

where instancename represents the service name of the ADAM instance on which you want to change the service account.
At the dsdbutil: prompt, type:

change service account accountname password

where accountname password represents the account name and password of the account to be used as the ADAM service account.
To exit dsdbutil, at the dsdbutil: prompt, type:

quit
At the command prompt, type:

net start instancename

to restart the ADAM instance.

Notes

To open an ADAM tools command prompt, click Start, point to All Programs, point to ADAM, and then click ADAM Tools Command Prompt.
When you specify a workstation or domain user account as the service account, the specified account must possess the Log on as a service right. To assign the Log on as a service right to an account, you must edit the security setting on the appropriate Group Policy object (GPO). For more information, see Related Topics.
The service account that you select must have permission to read and write the ADAM data and log files located in %ProgramFiles%\Microsoft ADAM\instancename.
The service account that you select may depend on whether the ADAM instance participates in a configuration set and also on the replication security level. For more information, see Related Topics.

See Also