Create AD user and delegate control

Create a container, Kerberos admin, and set permissions for the cluster.

  1. Navigate to Server Manager > Tools > Active Directory Users and Computers.
  2. Click View and check Advanced Features.
    View > Advanced features
  3. Create a container. This example uses the name IBM. Navigate to Action > New > Organizational Unit.
    Action > New > Organizational unit
  4. Specify the container name (Example uses name “IBM®”).
    Container name
  5. Create a user named hdpad. Navigate to Action > New > User.
    Action > New > User
  6. Specify the User logon name.
    User logon name
  7. Delegate control of the container to hdpad. Right-click on the new container (IBM), and select Delegate Control.
    Delegate control
  8. In the Delegation of Control Wizard, enter hdpad and click Check Names.
    Delegation of control wizard
  9. Confirm that the hdpad name is listed and click Next.
    Delegation of control wizard
  10. In the Tasks to Delegate field, select Create, delete, and manage user accounts.
    Delegation of control wizard
  11. Navigate to AD.COM > Properties > Security and add the hdpad user.
    AD.COM > Properties > Security