Direct Inward Dialing: +1 408 916 9393
Free EditionEnsure that the minimum hardware and software requirements listed below are met before installing ADManager Plus.
The following are the hardware requirements for deploying ADManager Plus.
| Hardware | Minimum | Recommended | ||
| Physical server | VM | Physical server | VM | |
| RAM* | 4GB | 6GB | 6GB | 8GB |
| Disk Space | 5GB | 5GB | 50GB | 50GB |
| Processor | 2.1GHz or faster | 2.1GHz or faster | 2.4GHz or faster | 2.4GHz or faster |
| Number of cores* | 2 Cores | 4vCPUs | 4 Cores | 6vCPUs |
Based on the operating system (client or server), the number of scheduled reports and automations running in parallel, and whether the Backup and Recovery add-on has been purchased, additional configuration might be needed. Learn more.
Hosting ADManager Plus without adequate system resources may affect its ability to perform necessary tasks. Use the calculator below to estimate the hardware requirements you’ll need for ADManager Plus to perform smoothly.
The following section outlines the memory and RAM requirements for Active Directory reporting and management
Active Directory management:
Following are the memory and RAM requirements for performing Active Directory management tasks using ADManager Plus:
| Number of objects created or modified per hour | RAM required (MB) | HDD required (GB) | Bandwidth (Mbps) |
| 1,000 | 256 | 4 | 10 |
| 5,000 | 512 | 8 | 10 |
| 10,000 | 1024 | 30 | 10 |
| 20,000 | 2048 | 50 | 50 |
| 50,000 | 4096 | 50 | 50 |
| 100,000 | 8192 | 50 | 50 |
Active Directory reporting
This section outlines the memory and RAM requirements for Active Directory reporting. These specifications consider all report generation activities for performing management tasks, including reports generated on demand, through the scheduler, and by automations.
| Number of objects in the domain | RAM required (MB) | HDD required (GB) | Bandwidth (Mbps) |
| 1,000 | 256 | 4 | 10 |
| 5,000 | 512 | 8 | 10 |
| 10,000 | 1,024 | 30 | 10 |
| 20,000 | 2,048 | 50 | 50 |
| 50,000 | 4,096 | 50 | 50 |
| 100,000 | 8,192 | 50 | 50 |
*Supports IE8 and above
Note: Use the latest version of the browser for better security and the best possible experience.
Recommended screen resolution: 1366 x 768 pixels or higher.
The following databases are supported
Note: If your ADManager Plus server has MySQL installed, we recommend migrating to PostgreSQL. Click here for database migration steps.
List of ports used by ADManager Plus »
| Port Number | Protocol | Purpose |
| 8080/8443 | HTTP/HTTPS | Necessary to connect to Tomcat web server |
| 33306 | TCP | To connect to the product database. |
Allow outbound connections to ports on the source server (ADManager Plus Server) and inbound connections to ports on the target servers (Domain Controllers, etc.).
| Port Number | Protocol | Source | Destination | Port Type | Service | Purpose |
| 389/639 | TCP and UDP | ADManager Plus Server | Domain Controllers | Static | LDAP | To connect to Active Directory |
| 135 | TCP | ADManager Plus Server | Domain Controllers | Static | RPC | Used to establish data exchange |
| 445 | TCP and UDP | ADManager Plus Server | Domain Controllers | Static | SMB | To get access to shared file systems |
| 88 | TCP | ADManager Plus Server | Domain Controllers | Static | Kerberos | For authentication when accessing a domain resource |
| 139 | TCP | ADManager Plus Server | Domain Controllers | Static | NetBIOS session | Required for communicating within network |
| 3268/3269 | TCP | ADManager Plus Server | Domain Controllers | Static | Global Catalog | Necessary for performing search operations in the Global Catalog |
| 25 | SMTP | ADManager Plus Server | SMTP Server | Static | SMTP | To send emails |
| 80 | HTTP | ADManager Plus Server | Domain Controllers | Static | Exchange | For connecting to Exchange Servers |
| 80, 443 | HTTP/HTTPS | ADManager Plus Server | Office 365/Google Workspace Server | Static | Office 365 and Google Workspace | Required for communicating with Office 365 and Google Workspace platforms |
| 49152- 65535 | TCP | ADManager Plus Server | RPC randomly allocated high TCP ports | Dynamic | RPC | Used to establish data exchange |
| 464 | TCP and UDP | ADManager Plus server | Domain controllers | Static | Kerberos | To change or set user passwords |
Active Directory reporting
This section outlines the memory and RAM requirements for Active Directory reporting. These specifications consider all report generation activities, including reports generated on demand, through the scheduler, and by automations, for performing management tasks.
| Number of objects in the domain | RAM required (MB) | HDD required (GB) | Bandwidth (Mbps) |
| 1,000 | 256 | 4 | 10 |
| 5,000 | 512 | 8 | 10 |
| 10,000 | 1024 | 30 | 10 |
| 20,000 | 2048 | 50 | 50 |
| 50,000 | 4096 | 50 | 50 |
| 100,000 | 8192 | 50 | 50 |
The table below gives disk space required for a year which is valid for both AD and Azure AD environments.
| Number of objects in the domain | RAM required for the add-on alone (GB) | Disk space required for 1 year | Bandwidth (Mbps) |
| 0 to 1,00,000 | 3 | 50 | 50 |
| 2,00,000 | 4 | 100 | 50 |
| 5,00,000 | 6 | 150 | 100 |
| 10,00,000 | 8 | 250 | 100 |
For Google Workspace, the disk space will vary based on the actual size of your total user mailboxes. Basic RAM requirement typically would be 8-16GB, along with a bandwidth of 50-100Mbps. However, considering future requirements and the backup retention period, it is recommended to allocate additional space as necessary. For instance, if the total size of the mailboxes and user drives is 1TB, ensure that there is 1TB of free disk space to store the full backup and subsequent incremental backups.
Following are the software requirements for deploying ADManager Plus:
ADManager Plus can be installed in any one of the following versions of Microsoft Windows operating systems:
ManageEngine ADManager Plus supports the following platforms:
ManageEngine ADManager Plus requires one of the following browsers to be installed on the system:
Note:
The following databases are supported by ADManager Plus:
| Port Number | Protocol | Purpose |
| 8080/8443 | HTTP/HTTPS | Necessary to connect to the Tomcat web server |
| 33306 | TCP | To connect to the product database |
| 9280 | HTTP | To connect to the Elasticsearch database |
| 9380 | TCP | Used for communications between nodes in a cluster |
Allow outbound connections to ports on the source server (the ADManager Plus server) and inbound connections to ports on the target servers (i.e. domain controllers).
| Port Number | Protocol | Source | Destination | Port Type | Service | Purpose |
| 389/636 | TCP and UDP | ADManager Plus server | Domain controllers | Static | LDAP | To connect to Active Directory |
| 135 | TCP | ADManager Plus server | Domain controllers | Static | RPC | For data exchange |
| 445 | TCP and UDP | ADManager Plus server | Domain controllers | Static | SMB | To get access to shared file systems |
| 88 | TCP | ADManager Plus server | Domain controllers | Static | Kerberos | For authentication when accessing a domain resource |
| 139 | TCP | ADManager Plus server | Domain controllers | Static | NetBIOS session | Required for communicating within the network |
| 3268/3269 | TCP | ADManager Plus server | Domain controllers | Static | Global Catalog | Necessary for performing search operations in the Global Catalog |
| 25 | SMTP | ADManager Plus server | SMTP server | Static | SMTP | To send emails |
| 80 | HTTP | ADManager Plus server | Domain controllers | Static | Exchange | For connecting to Exchange servers |
| 80, 443 | HTTP/HTTPS | ADManager Plus server | Microsoft 365 or Google Workspace servers | Static | Microsoft 365 and Google Workspace | Required for communicating with Microsoft 365 and Google Workspace platforms |
| 49152- 65535 | TCP | ADManager Plus server | RPC randomly allocated high TCP ports | Dynamic | RPC | Used to establish data exchange |
| 464 | TCP and UDP | ADManager Plus server | Domain controllers | Static | Kerberos | To change or set user passwords |
Allowing the required domains in your firewall is optional and can be done if desired.
| Domains (optional) |
Endpoints | Usage |
| *.zoho.com | https://creator.zoho.com |
|
| https://salesiq.zoho.com | This is used for the Live Chat feature in the Support tab | |
| manageengine.com | https://pitstop.manageengine.com | This is used to display recent forum posts and announcements in the Support tab |
| https://updates.manageengine.com | This is used to import certificates required to verify the integrity of service packs | |
| https://www.manageengine.com/products/ad-manager/release-notes.html | This is used for product release notes | |
| https://www.manageengine.com/products/ad-manager/help/ | This is used for the product online admin guide | |
| *.zohocorp.com | https://uploads.zohocorp.com | This is used to download patch files, if any |
| https://bonitas.zohocorp.com/ | This is used to upload log files |
The Backup and Recovery add-on requires a few ports to be enabled based on your Azure environment.
Azure worldwide
| Modules | Endpoints |
| Exchange Online PowerShell | https://outlook.office365.com/powershell-liveid/ |
| Exchange Web Services | https://outlook.office365.com/EWS/Exchange.asmx |
| SharePoint Online | https://<tenant>-admin.sharepoint.com |
| Azure AD Endpoint | https://login.microsoftonline.com/<tenantName>/oauth2/v2.0/token |
| Azure Graph Endpoint | https://graph.windows.net/ |
| Microsoft Graph Endpoint | https://graph.microsoft.com |
Azure China
| Modules | Endpoints |
| Exchange Online PowerShell | https://partner.outlook.cn/PowerShell-LiveID |
| Exchange Web Services | https://partner.outlook.cn/EWS/Exchange.asmx |
| SharePoint Online | https://<tenant>-admin.sharepoint.com |
| Azure AD Endpoint | https://login.chinacloudapi.cn/<tenantName>/oauth2/v2.0/token |
| Azure Graph Endpoint | https://graph.chinacloudapi.cn/ |
| Microsoft Graph Endpoint | https://microsoftgraph.chinacloudapi.cn |
Azure Germany
| Modules | Endpoints |
| Exchange Online PowerShell | https://outlook.office.de/powershell-liveid/ |
| Exchange Web Services | https://outlook.office.de/EWS/Exchange.asmx |
| SharePoint Online | https://<tenant>-admin.sharepoint.de |
| Azure AD Endpoint | https://login.microsoftonline.de/<tenantName>/oauth2/v2.0/token |
| Azure Graph Endpoint | https://graph.cloudapi.de/ |
| Microsoft Graph Endpoint | https://graph.microsoft.de/ |
Azure for United States government
| Modules | Endpoints |
| Exchange Online PowerShell | https://outlook.office365.us/powershell-liveid/ |
| Exchange Web Services | https://outlook.office365.us/EWS/Exchange.asmx |
| SharePoint Online | https://<tenant>-admin.sharepoint.us |
| Azure AD Endpoint | https://login-us.microsoftonline.com/<tenantName>/oauth2/v2.0/token |
| Azure Graph Endpoint | https://graph.windows.net/ |
| Microsoft Graph Endpoint | https://graph.microsoft.com |
Azure for the US Department of Defense
| Modules | Endpoints |
| Exchange Online PowerShell | https://webmail.apps.mil/powershell-liveid/ |
| Exchange Web Services | https://webmail.apps.mil/EWS/Exchange.asmx |
| SharePoint Online | https://<tenant>-admin.sharepoint-mil.us |
| Azure AD Endpoint | https://login-us.microsoftonline.com/<tenantName>/oauth2/v2.0/token |
| Azure Graph Endpoint | https://graph.windows.net/ |
| Microsoft Graph Endpoint | https://graph.microsoft.com |
The Azure general cloud users must ensure that the following domains are allowed by their firewall.
Azure AD general cloud
| Modules | Endpoints |
| REST API | login.microsoftonline.com |
| graph.microsoft.com | |
| manage.office.com | |
| portal.office.com | |
| admin.microsoft.com/fd/CommerceAPI/my-org | |
| aadcdn.msftauth.net (or) aadcdn.msauth.net |
|
| Exchange Online | outlook.office.com |
| outlook.office365.com/powershell-liveid |
Azure Germany
| Modules | Endpoints |
| REST API | login.microsoftonline.de |
| graph.cloudapi.de | |
| graph.microsoft.de | |
| portal.office.de | |
| manage.office.de | |
| Exchange Online | outlook.office.de |
| outlook.office.de/powershell-liveid |
Azure China
| Modules | Endpoints |
| REST API | login.partner.microsoftonline.cn |
| microsoftgraph.chinacloudapi.cn | |
| manage.office.cn | |
| portal.azure.cn | |
| aadcdn.msftauth.cn | |
| Exchange Online | partner.outlook.cn |
| partner.outlook.cn/PowerShell |
Azure US
| Modules | Endpoints |
| REST API | login.microsoftonline.us |
| graph.microsoft.us | |
| manage.office.us | |
| portal.azure.us | |
| Exchange Online | outlook.office365.us |
| outlook.office365.us/powershell-liveid |
Reset password and set password propertied from a single web-based console, without compromising on the security of your AD! Delegate your password-reset powers to the helpdesk technicians too!
Configure Active Directory Terminal Services attributes from a much simpler interface than AD native tools. Exercise complete control over technicians accessing other domain users' computers.
A catalog of almost every report that you will need from your Active Directory! Comprehensive and Reliable reporting. Schedule reports to run periodically. Manage your AD right from within the reports.
Active Directory reports to assist you for compliance to Government Regulatory Acts like SOX, HIPAA, GLBA, PCI, USA PATRIOT...and much more! Make your organization compliance-perfect!
Unload some of your workload without losing your hold. Secure & non-invasive helpdesk delegation and management from ADManager Plus! Delegate powers for technician on specific tasks in specific OUs.
Create and manage Exchange mailboxes and configure mailbox rights using ADManager Plus's Exchange Management system. Now with support for Microsoft Exchange 2010!!
