Modify AD LDS Configuration

 

Applies to: Exchange Server 2010 SP3, Exchange Server 2010 SP2

You can use the ConfigureAdam.ps1 script in the Shell to modify the default configuration of the Active Directory Lightweight Directory Services (AD LDS) on the Edge Transport server.

Important

Don't modify the AD LDS configuration of an Edge Transport server after the Edge Transport server is subscribed to the Microsoft Exchange Server 2010 organization. If you modify the AD LDS configuration of a subscribed Edge Transport server, you must resubscribe the Edge Transport server to the Exchange organization. For more information, see Import an Edge Subscription File to an Active Directory Site.

After you install the Edge Transport server role, you can use the ConfigureAdam.ps1 script provided with Exchange 2010 to modify the ports and directories that AD LDS uses.

The ConfigureAdam.ps1 script invokes the dsdbutil command to change the registry settings for AD LDS. The dsdbutil command is a management tool for AD LDS that's intended for use by experienced administrators only.

Warning

Don't modify the registry settings without using the script. Manual registry changes to the AD LDS configuration make the AD LDS instance unavailable.

The following table lists the parameters that can be used by the ConfigureAdam.ps1 script and how each parameter is used. You can use one, all, or a combination of any of these parameters to modify AD LDS. You must run the script by using the Shell.

ConfigureAdam.ps1 parameters and their use

Parameter Use

Ldapport

Use this parameter to modify the port used for LDAP communication. By default, the Edge Transport server uses the nonstandard port 50389.

Sslport

Use this parameter to modify the communication port used for secure LDAP communication. By default, the Edge Transport server uses the nonstandard port 50636.

LogPath

Use this parameter to modify the location of the log files. By default, the Edge Transport server creates log files in the path C:\Program Files\Microsoft\Exchange server\V14\Transport Roles\Data\adam.

DataPath

Use this parameter to modify the location of the directory database file. By default, the Edge Transport server stores the directory database in the path C:\Program Files\Microsoft\Exchange server\V14\Transport Roles\Data\adam.

Looking for other management tasks related to Edge Subscription? See Managing Edge Subscriptions.

Prerequisites

  • Determine the settings that you will use with this command.

  • If you modify the LDAP port or the SSL port used by AD LDS, first verify that the selected port isn't being used by another application. You can use the netstat command to view ports being used on the Edge Transport server.

Use the ConfigureAdam.ps1 script in the Shell to modify AD LDS configuration

You need to be assigned permissions before you can perform this procedure. To see what permissions you need, see the "Edge Transport server" entry in the Transport Permissions topic.

The ConfigureAdam.ps1 script is located by default in the C:\Program Files\Microsoft\Exchange Server\V14\Scripts folder.

This example uses the ConfigureAdam.ps1 script to change the LDAP port to 5000.

ConfigureAdam.ps1 -LdapPort:5000

This example uses the ConfigureAdam.ps1 script to make the following changes to the AD LDS configuration:

  • Changes the LDAP port to 5000

  • Changes the SSL port to 5001

  • Changes the log path to D:\Exchange Server\Data\ADLDS

  • Changes the data path to D:\Exchange Server\Data\ADLDS

ConfigureAdam.ps1 -LdapPort:5000 -SslPort:5001 -LogPath:"D:\Exchange Server\Data\ADLDS" -DataPath:"D:\Exchange Server\Data\ADLDS"

 © 2010 Microsoft Corporation. All rights reserved.