Active Directory

How to Manage a Windows Server 2008 DC Using the Active Directory Administrative Center (ADAC)

The Active Directory Administrative Center (ADAC) was introduced in Windows Server 2008 R2, and has been improved in subsequent releases. In this Ask the Admin, I’ll show you how to use ADAC to remotely manage earlier versions of Windows Server.

Active Directory Web Service

Windows Server 2008 R2 included for the first time the Active Directory Web Service, which allows PowerShell to interact with Active Directory (AD), also enabling the Active Directory Administrative Center because it uses PowerShell behind the scenes. To manage DCs (both writeable and read-only) that run earlier versions of Windows Server using the AD PowerShell module or ADAC, you need to install the Active Directory Management Gateway Service.

The gateway allows management of full Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), and Active Directory Application Mode (ADAM) on DCs running Windows Server 2003 SP2 or later.


Sponsored Content

What is “Inside Microsoft Teams”?

“Inside Microsoft Teams” is a webcast series, now in Season 4 for IT pros hosted by Microsoft Product Manager, Stephen Rose. Stephen & his guests comprised of customers, partners, and real-world experts share best practices of planning, deploying, adopting, managing, and securing Teams. You can watch any episode at your convenience, find resources, blogs, reviews of accessories certified for Teams, bonus clips, and information regarding upcoming live broadcasts. Our next episode, “Polaris Inc., and Microsoft Teams- Reinventing how we work and play” will be airing on Oct. 28th from 10-11am PST.

Active Directory Administrative Center

Install Active Directory Management Gateway Service on Windows Server 2008 SP2

Download the Active Directory Management Gateway Service from Microsoft. You will need to choose the correct package for your server. In this example, I’m running Windows Server 2008 SP2 64bit edition, so I will download Windows6.0-KB968934-x64.msu. If you are installing the gateway service on Windows Server 2003 or Server 2003 R2, download Windows5.2-KB968934-x64.exe or Windows5.2-KB968934-x86.exe, as appropriate to the architecture of your server’s processor.

Before proceeding, make sure that the .NET Framework 3.5 SP1 (or later) is installed. Additional hotfixes may be required for Windows Server 2003, so see the download page for more information. Run the downloaded package, follow the simple install instructions, and restart the server.

Use ADAC to Manage Windows Server 2008 SP2

When the server has rebooted, you’ll be able to run ADAC from a remote computer to manage AD on the domain controller where you installed the gateway service. Don’t forget that the Active Directory Management Gateway Service doesn’t allow you to use ADAC directly on servers prior to Windows Server 2008 R2. You will need to download the Remote Server Administration Tools (RSAT) and install them on a management server or workstation.

For more information on installing and using RSAT, check out “Remote Server Administration Tools (RSAT) for Windows 8: Download and Install” on Petri.

Related Topics:


Don't have a login but want to join the conversation? Sign up for a Petri Account

Comments (1)

One response to “How to Manage a Windows Server 2008 DC Using the Active Directory Administrative Center (ADAC)”

Leave a Reply

IT consultant, Contributing Editor @PetriFeed, and trainer @Pluralsight. All about Microsoft, Office 365, Azure, and Windows Server.
External Sharing and Guest User Access in Microsoft 365 and Teams

This eBook will dive into policy considerations you need to make when creating and managing guest user access to your Teams network, as well as the different layers of guest access and the common challenges that accompany a more complicated Microsoft 365 infrastructure.

You will learn:

  • Who should be allowed to be invited as a guest?
  • What type of guests should be able to access files in SharePoint and OneDrive?
  • How should guests be offboarded?
  • How should you determine who has access to sensitive information in your environment?

Sponsored by:

Live Webinar: Active Directory Security: What Needs Immediate Priority!Live on Tuesday, October 12th at 1 PM ET

Attacks on Active Directory are at an all-time high. Companies that are not taking heed are being punished, both monetarily and with loss of production.

In this webinar, you will learn:

  • How to prioritize vulnerability management
  • What attackers are leveraging to breach organizations
  • Where Active Directory security needs immediate attention
  • Overall strategy to secure your environment and keep it secured

Sponsored by: