0 votes


is there any guide what to do if the service account is not a domain admin?
Especially what rights does the account need for the Exchange connection?

The event log is full of errors that the account cannot read several things via LDAP (Permission denied).
And what is need for the Exchange servers (WinRM?).


by (200 points)

1 Answer

0 votes
by (215k points)
edited by
Best answer

is there any guide what to do if the service account is not a domain admin?

All operations in a managed domain are performed using the credentials of the account that was specified during the domain registration in Adaxes (domain service account). When you install Adaxes, the domain of the Adaxes service account is automatically registered using the credentials of this account. As long as the account does not have required permissions, you get the error messages. To remedy the issue, you need to specify a domain service account that has appropriate permissions in the domain. For details, see https://www.adaxes.com/help/?HowDoI.Man ... nInfo.html.

what rights does the account need for the Exchange connection?

The account that was used for registering your domain in Adaxes must be assigned to an appropriate role group in Exchange. We recommend assigning the service account to the Organization Management role group. It provides administrative access to an entire Exchange organization and can perform almost any task.

If, for some reason, you do not want to provide the account administrative access to your Exchange organization, you need to assign the account to the following role groups in Exchange:

For more details, see Understanding Management Roles.


Thank you very much!
I'll try that and report back.

Related questions

0 votes
1 answer

I upgraded to the latest Adaxes version about a month ago. Previously, I had my Domain Admin account as the service user, for the Softerra Adaxes service, and ... , but specified the different service account to run the Softerra Adaxes Service with.

asked Nov 26, 2019 by rurbaniak (1.4k points)
0 votes
1 answer

So not sure how it happened but the Adaxes web interface is connected to my domain admin account. When I tried to change it everything went down. Were are all the locations this password is store on the server? Thanks

asked Jan 20, 2015 by 7efd721c8b (420 points)
0 votes
1 answer

Hello, I would like to create a custom command "Add domain user to local admin group". The powershell command to execute this is quite easy. Where I'm struggling is another ... exist. Is it possible to create such a task without a custom form? Many thanks.

asked Aug 29, 2017 by HorstR (460 points)
0 votes
1 answer

Hello Is there any way to configure Adaxes Administration Console to automatically connect to the adaxes service after startup? That would be pretty handy. So the console can be ... which sometimes takes some time. I use version 2021.1 update 5 regards pudong

asked Mar 12 by pudong (560 points)
0 votes
1 answer

Given Scenario: Adaxes domain user is remote with his laptop and has adaxes self service client installed on Windows and is enrolled for self service via Adaxes. We ... get updated when a user initiates password reset/change password from the lock screen ?

asked Nov 2, 2020 by rsaran (70 points)
2,779 questions
2,512 answers
25,886 users