Hi all,
I'm trying to find out the actual minimum required privilege to run ADAMSync for a standalone (no-replication) LDS instance (Win 2008 R2).
According to technet library, Administrators group membership in the LDS instance is the only requirement to run ADAMSync. However I find it to be not true.
I have an account that is a member of the Administrators group in the LDS instance but a normal non-admin user in the server. There is no problem modifying anythingwithin LDS with that account. However when trying to run ADAMSync under this account, it quickly returns "done" without doing anything (the log file is untouched).
Once I have made the account part of the local Administrators group in the server, ADAMSync worked right away.
Is it an implicit requirement that the official doc fails to mention??
I'm trying to find out the actual minimum required privilege to run ADAMSync for a standalone (no-replication) LDS instance (Win 2008 R2).
According to technet library, Administrators group membership in the LDS instance is the only requirement to run ADAMSync. However I find it to be not true.
I have an account that is a member of the Administrators group in the LDS instance but a normal non-admin user in the server. There is no problem modifying anythingwithin LDS with that account. However when trying to run ADAMSync under this account, it quickly returns "done" without doing anything (the log file is untouched).
Once I have made the account part of the local Administrators group in the server, ADAMSync worked right away.
Is it an implicit requirement that the official doc fails to mention??