Unable to create a user

Hello,

I keep getting this error message when I try to create an account via the admin page

Access is denied. (Server: domain.local)

I am assuming this has to do with the permissions on the adaxes log on service. The account is not a domain admin. It does have permissions as an admin on the PC via AD users and computers. Do I have to use a domain admin account to create the user?

I looked at the logs and it says the same error above. Im a bit lost now.

by (150 points)

1 Answer

by (306k points)
Best answer
0 votes

Hello,

The issue occurs because the account specified for the managed domain in Adaxes does not have required native AD permissions. For information on how to check/change the account, have a look at the following help article: https://www.adaxes.com/help/ChangeManagedDomainServiceAccount. It is not necessary to make the account a domain admin. You can just grant them the permissions to create user accounts.

Related questions

Unable to create an OU in a managed domain

Hello, I have Adaxes installed in one forest (domain.com) and we have a 1 way forest trust with another forest (ca.domain.com). I have made the Adaxes service account in ... .com I get the same error. Could someone help me understand what I'm doing wrong?

asked Jun 6, 2016 by drew.tittle (810 points)
0 votes
1 answer
Unable to Create Mailbox from the Web UI

Since updating from Adaxes 2020.1 to 2021.1 we are no longer able to create Mailboxes from within the web Ui with just an error this operation is not allowed in the web ... again? the security role for the admins is set to full control on all object trypes.

asked Apr 19, 2021 by philb (20 points)
0 votes
1 answer
create an action that can be run against a user object to move their direct reports to another user object

I need to be able to move a Managers direct reports to another Manager in the event of promotion or resignation. I want to create this as a selectable action, rather than making it part of an existing custom command.

asked Sep 15 by adrian.watson (40 points)
0 votes
1 answer
can we run a flow to create approved new joiner user accounts in AD onprem by inspecting a SharePoint list with Adaxes?

we'd like to build a New Joiner user account creation procedure and were wondering if Adaxes is able to read a SharePoint list and build a flow that can create user ... in MS365 Exchange online, if the respective new joiner is approved in the SharePoint list.

asked Aug 4 by Lucian (20 points)
0 votes
1 answer
Schd Task running PowerShell to create a user, a rule triggered on "before creating user" cannot find the domain.

I have a scheduled task that runs the following PowerShell script. $user = New-AdmUser -Server $domain -AdaxesService localhost -Path $workdayDn -ChangePasswordAtLogon $true -PassThru - ... ) over all objects. I'm stumped! Any help would be super appreciated.

asked Sep 5, 2024 by emeisner (160 points)
0 votes
1 answer