The Best Software for AD Management – HUGE List of 40 Active Directory Tools

We've compiled a MASSIVE List of the Best (and Free) Active Directory Tools (Update for 2024) for Windows admins that will help with any of your Auditing, Reporting, and Management needs. We've gone through this list and will update it as more tools become available or become obsolete, as not every software manufacturer updates their tools for the latest version of Active Directory (2003, 2012 & 2016).

Here is our list of the Top-10 Active Directory Tools:

1. ManageEngine ADManager Plus – EDITOR'S CHOICE A package of AD management tools with functions that can interface with Microsoft 360 as well as your Azure, AWS, and on-premises AD implementations. Available for installation on Windows Server or as Azure and AWS services. Start a 30-day free trial.
2. ManageEngine ADAudit Plus – FREE TRIAL A package that provides analysis of AD implementations and can also be used to track user activity. Available for Windows Server or as a service in Azure and AWS. Start a 30-day free trial.
3. ManageEngine ADSelfService Plus A package that provides single sign-on, multi-factor authentication, and self-service password management. Available for Windows Server or as services on Azure and AWS.
4. ManageEngine AD360 This service monitors system activities in terms of user actions and file and device access events. Offered for Windows Server or as a service in Azure and AWS.
5. MaxPowerSoft Active Directory Reports Lite Available in free and paid versions, this tool helps you manage user accounts and device permissions in multiple AD implementations. Runs on Windows.
6. SolarWinds Permissions Analyzer for Active Directory This excellent tool will give you insights into both the user account structure and the device permissions that are currently laid out in your AD implementations. Runs on Windows Server.
7. SolarWinds Admin Bundle This free user account management tool lets you upload accounts in bulk into AD and helps you spot inactive users, together with network management tools. Runs on Windows Server.
8. AD Tidy An Active Directory user management tool that spots inactive and abandoned accounts and has a free version. Runs on Windows.
9. SpecOps Gpupdate A package of remote endpoint management tools that includes Active Directory interfacing to support its operations. Runs on Windows.
10. Specops Command This is a user and device management package that uses AD data in its processes. Runs on Windows.

Many of the tools below have very basic and limited functionality, as some, if not all, Are Completely FREE!

Yes, you won't need to buy a majority of the software below unless you want some premium features that some of them require payment for, but they work nonetheless without Upgrading.

The Top Active Directory Tools of 2024

With these selection criteria in mind, we looked for useful systems that will save you time and enable you to tighten system security by tightening access rights.

1. ManageEngine ADManager Plus – FREE TRIAL

ADManager Plus gives you the ability to manage AD Objects, users, Groups, and much more from a Centralized GUI, along with options for generating extensive reports of Active Directory.

Key Features:

• Abandoned account detection
• Bulk upload
• Mass updates

Why do we recommend it?

A 100% web-based solution through which you can create or modify users on AD.  It also comes with reporting and workflow management capabilities.

Features include not only Active Directory user management but Real Last Logon Time Reports, Bulk User management, and Group & Computer Management capabilities.

Who is it recommended for?

It works well for network and AD administrators who want to stay on top of their AD performance. Also, a good choice for businesses that use Office 365, Exchange, Skype for Business, and Google Workspace Management.

You can download a 30-day free trial.

2. ManageEngine ADAudit Plus – FREE TRIAL

ADAudit Plus offers Real-time monitoring, user and entity behavior analytics, and change audit reports that help you keep your AD and IT infrastructure secure and compliant.

• Track all changes to Windows AD objects including users, groups, computers, GPOs, and OUs.
• Achieve hybrid AD monitoring with a single, correlated view of all the activities happening across both on-premises AD and Azure AD.
• Monitor every user's logon and logoff activity, including every successful and failed logon attempt across network workstations.
• Audit Windows file servers, failover clusters, NetApp, and EMC storage to document changes to files and folders.
• Monitor system configurations, program files, and folder changes to ensure file integrity.
• Track changes across Windows servers, printers, and USB devices with a summary of events.
• Leverage advanced statistical analysis and machine learning techniques to detect anomalous behavior and defend against cyber attacks.

Key Features:

• File integrity management
• Sensitive data protection
• Detects AD tampering

Why do we recommend it?

It goes beyond just AD and also monitors your file servers, Windows servers, workstations, Azure AD, and more. It also comes with many advanced features like real-time change notification, Windows logon monitoring, account lockout analysis, and more.

Who is it recommended for?

Ideal for growing organizations, where the administrator has to delegate roles to employees across different departments.

Register and download the 30-day free trial.

ManageEngine ADAudit Plus Start a 30-day FREE Trial

3. ManageEngine ADSelfService Plus

ADSelfService Plus offers password self-service reset/unlock, password expiration reminders, a self-service directory updater, a multiplatform password synchronizer, and single sign-on for cloud applications.

Key Features:

• User portal
• Reduces technician workload
• Mobile apps

Why do we recommend it?

This tool allows users to perform password resets and other self-service actions from any time and anywhere, relieving IT admins to focus on the more important tasks. It also comes with mobile apps for Android and iOS.

Use the ADSelfServicePlus Android and iPhone mobile apps to facilitate self-service for end users anywhere at any time.

ADSelfService Plus supports the IT help desk by reducing password reset tickets and spares end users the frustration caused by computer downtime.

Who is it recommended for?

Works well for organizations that want to balance security with convenience while enhancing the efficiency of the IT department.

4. ManageEngine AD360

AD360 is an integrated solution for Identity and Access Management (IAM) needs in a Windows environment.

Key Features:

• Package of four tools
• Self-service
• Exchange Server reporting

Why do we recommend it?

An integrated solution that comes with many capabilities like identity and access management, account lockout management, Exchange auditing, and more. It eliminates the need to have multiple tools and manage them.

This web-based software portfolio unifies all the functionalities needed for an enterprise: from user provisioning, and self-service to risk governance, and offers it with a simple, easy-to-use interface.

AD360 is the right solution for bridging the gap between technology and complex business needs.

AD360 automates all the routine Identity and Access Management tasks like provisioning/de-provisioning bulk user accounts and other AD objects, secure management of account passwords, modifying multiple attributes of user accounts, and managing user mailboxes and their email traffic.

Who is it recommended for?

A good choice for IT administrators of large Windows environments.

5. MaxPowerSoft Active Directory Reports Lite

MaxPowerSoft's Free offering allows you to load up to 200 objects from Active Directory, along with User Reports, Group and OU Reports, Computer Reports and GPO reports from within their program.

Key Features:

• Free tool
• Bulk upload
• Permissions assessment

Why do we recommend it?

Makes it easy to create custom reports for specific needs. You can load up to 200 objects from AD to generate the reports you want.

Who is it recommended for?

Ideal for network administrators who want to create AD reports for auditing and compliance.

6. SolarWinds Permissions Analyzer for Active Directory

SolarWinds offers a Truly Free Active Directory Users and Computers permissions analyzer, allowing you to browse and identify with groups and users have which permissions. Also, you can see the breakdown of inherited permissions of each user by their group membership.

Key Features:

• Free to use
• On-premises
• Inheritance management
• Group membership analysis
• Permissions browser

Why do we recommend it?

Highly usable, as you can quickly query the permissions on any file or folder without having to log into the server. Also, installation is super simple.

Who is it recommended for?

Ideal for network engineers, administrators, and security specialists who want to understand the access mapping between users and resources in the AD domain.

7. SolarWinds Admin Bundle

The Admin Bundle for Active Directory from SolarWinds Consists of 3 separate software utilities that will assist in the daily, weekly, and monthly Administrative Tasks of AD. This includes the following utilities:

1. Inactive User Account Removal Tool
2. Import User in Bulk
3. Inactive Computer Removal Utility

Each utility has its own function which allows you to quickly Remove Inactive Active Directory USER Accounts and Computer accounts. They each have a friendly and easy-to-use Graphical Interface and come in very handy without having to log into your Domain Controller.

Key Features:

• Free package
• On-premises
• Spots abandoned accounts
• Bulk upload

Why do we recommend it?

Simplifies AD management, as you can easily add or remove computers and users from the AD in bulk or individually. You can also add filters to identify and remove specific users.

Who is it recommended for?

A good choice for AD administrators who want comprehensive control and visibility into the working of their AD domains.

8. AD Tidy

AD Tidy helps you search and find Inactive Users from ADUC as well as Dormant and Inactive Computer Accounts as well to minimize any possible security issues.

Key Features:

• Abandoned account detection
• Removes accounts for retired devices
• Bulk actions

Why do we recommend it?

A free utility that enables administrators to look up a user or computer easily. It also enables the viewing of converted schema attributes that are not readable natively.

Who is it recommended for?

It is perfect for the IT administrators of small and medium businesses who want to look up objects in their AD.

9. SpecOps Gpupdate

SpecOps GPUPDATE software gives you the power to remotely administer a Single Computer or Multiple Computer accounts from Active Directory. Options include Refresh Group Policy Remotely, using WSUS to confirm Updates Remotely, Remotely Wake-Up Computer using WOL (Wake-On Lan) features, and Remotely Shutdown/Restart PC.

Key Features:

• Remote administration
• Includes WSUS
• Group policy management

Why do we recommend it?

A free tool that integrates with AD users and computers. It also allows the administrator to do tasks remotely using Group Policy.

Who is it recommended for?

An optimal solution for network administrators who want to remotely administer or perform tasks on computers.

10. Specops Command

SpecOps Command utility allows you to administrate Computers and Users within your network and run VBScripts or PowerShell scripts using Group Policy quickly and ensure all feedback is received at the utility.

Key Features:

• Update script management
• Edit and launch scripts
• AD management library

Why do we recommend it?

This tool combines Windows PowerShell and Group Policy to help manage computers and users on your network. It also simplifies app installation in your Azure AD environment.

Features include Scheduling scripts to run at certain times and how often to run as well as web-based Reporting of feedback from scripts that have run.

Who is it recommended for?

This tool is well-suited for AD administrators who require security and flexibility.

11. AD PHOTO EDIT

AD Photo Edit allows you to import and Upload images to an AD attribute that Outlook 2010 Displays, as well as Lync and Sharepoint.

Why do we recommend it?

A user-friendly application with which you can easily upload, edit, and export user and contact photos in AD.

Who is it recommended for?

It is for AD/network administrators of small and medium organizations.

The free version allows you to view existing images for Users and Contacts in the active directory, Export Images, Remove Existing Images, Upload New images, Rotate/Resize/Adjust the Quality of Images, and much more.

12. AD Info

AD Info tool comes with 190 different pre-built reports that allow you to query a large number of attributes including Users, Computers, Contacts, Organization Units, GPO's, Printers and more! One of the benefits of this is you can run this program without Domain Admin privileges.

Why do we recommend it?

This tool is modern and user-friendly. You can also use its 150 built-in queries to generate the reports you need.

Who is it recommended for?

This free tool can come in handy for AD administrators, project managers, IT department heads, and anyone else who needs AD-related reports.

Export your query results to CSV and query any domain you have access to.

13. AD Query

Ad Query is a Free executable tool (no installation required) that can be used to easily and quickly search Active Directory for information regarding a User or Computer for specific information.

Why do we recommend it?

It comes with a convenient user interface, using which you can query the AD to get any desired data.

Who is it recommended for?

Works well for IT, network, and AD administrators who want to get AD-related information.

You can search ALL data from Schema, LDAP, and Exchange mail-enabled objects within your AD.

14. Recovery Manager for Active Directory

Recovery Manager for AD from Quest gives you the ability to recover any objects from AD without having to restart the Domain Controller.

Why do we recommend it?

Helps to get AD back on track quickly. As a result, it reduces downtime and users can start working without having to restart the domain controllers.

Who is it recommended for?

A good choice for IT administrators who want to reduce the negative impact on end users.

This includes restoring objects from Users, Attributes, OUs, Computers, Subnets, Group Policy Objects, and more.

15. SysAdmin Anywhere

SysadminAnywhere is a great Active Directory Tool for Windows 10 that has a long list of features for AD Administration and Management.

Why do we recommend it?

Helps administer multidomain AD-based networks. Using this tool, you can manage domains, servers, computers, groups, users, and more.

Who is it recommended for?

A good choice for IT admins who want to remotely administer and manage devices. Also, helps to generate inventory.

Some features include Resetting Users password, Add/Edit/Delete Objects in AD, Add Photos, Restart/Shutdown Computers remotely in AD, Check for Updates, and Monitoring Hardware and Computers (CPU, Drive, Memory, HTTP, ping, Services, Events).

16. BeyondTrust PowerBroker Auditor

PowerBroker is an all-encompassing tool for Active Directory that allows admins and organizations to keep their AD locked down tight and have a firm grasp of what's going on inside their AD environment in order to meet PCI, SOX, and HIPAA compliance.

Why do we recommend it?

A helpful tool to pinpoint changes in AD. Using this information, you can identify security risks and compliance,

Who is it recommended for?

A good choice for security specialists to understand compliance rates and improve operational efficiency.

This is done through audits and alerting of AD configuration and changes in real-time so you know exactly what is changing how it affects your compliance and whether you at risk or not.

17. Managed Service Accounts GUI

This little utility helps you configure Managed Service Accounts using an easy GUI interface and without the need of Powershell or any PS commands.

Why do we recommend it?

This tool allows you to create, configure, and install Managed Service Accounts. No prior PowerShell knowledge is needed to use it.

Who is it recommended for?

A perfect choice for AD admins, as its GUI makes it easy to configure managed service accounts.

This utility cuts out the need to run 3 separate commands via Powershell and helps you create/delete new and Old Managed Service accounts with the click of a button.

18. Microsoft Active Directory Topology Diagrammer

This topology mapper/diagram tool reads AD configurations and automatically Creates a Visio file of your AD topology using LDAP and maps out your entire Active Directory and Exchange Server Topology automatically within an easy-to-read Visio Diagram.

Why do we recommend it?

With this tool, you can easily read an AD configuration and even generate a Visio diagram of your AD and Exchange Server topology.

Who is it recommended for?

Ideal for IT admins managing a Windows environment.

19. ManageEngine Free Active Directory Tools

ManageEngine offers several Great utilities for managing Active Directory – including the following tools that can be found at the URL below: AD Query Tool, CSV Generator (generate a CSV file from any AD Attributes), Last Logon Reporter, Active Directory Replication Manager and Many more! Check out their Full list of tools at the link below.

Why do we recommend it?

A comprehensive suite of tools for managing identities, user provisioning and de-provisioning, auditing, and more.

Who is it recommended for?

Works well for AD admins, as it eases the management of AD objects while generating relevant reports.

20. Group Manager

This tool allows a user that is assigned as a Manager of a group to manage members and settings of that given group including adding and removing other users and exporting group members to a CSV file.

Why do we recommend it?

Makes it easy to manage group membership for AD groups and helps managers add or remove users.

Who is it recommended for?

A good choice for the manager of a group who is responsible for managing the roles in an organization. Also, works well for end users who wish to edit group membership for security or distribution groups.

You additional configuration is required, the utility will automatically detect which groups you are a Manager of and allow you to make changes as necessary.

21. Softerra LDAP Browser

This LDAP Browser is a lightweight tool that supports Read-Only of your LDAP infrastructure and allows you to View, Browse, Search and Export information from LDAP.

Why do we recommend it?

This tool comes with a wide range of features for browsing, viewing, and analyzing LDAP directories, and their infrastructure and objects.

Who is it recommended for?

Softerra LDAP Browser is a good choice for AD admins.

22. IT Environment Health Scanner

This Health Scanner from Microsoft is specifically targeted towards Admins and Engineers who want to get an Overview of their current Active Directory Health by scanning it for Problems and inconsistencies.

Why do we recommend it?

This diagnostic tool assesses the overall health of the network infrastructure.

Who is it recommended for?

Ideal for network administrators of small or medium-sized companies, typically up to 20 servers and 500 client computers.

This tool is great for scanning your network infrastructure and pinpointing issues that could cause your AD from functioning correctly. You must be a member of the Domain Admins group to run this utility.

23. NetWrix Restore Deleted AD Users, Groups, Etc

Netwrix Restore tool helps you recover and restore deleted Active Directory objects with 3 Steps – Identify the Day/Time that you want to Restore back to – Select the Recovery/Rollback Source (either AD Tombstone or Netwrix Snapshot) – and Lastly choose the Changes you want to Revert back.

Why do we recommend it?

This tool protects your organization from security breaches and makes it easy to revert entire AD objects without any downtime.

Who is it recommended for?

A good choice for AD admins to maintain the security of the AD, without impacting employee productivity.

You have the ability to restore AD Deleted objects and if necessary, revert back to previous time periods if you made the wrong changes.

24. ADRestore.NET

AdRestore.NET is a GUI version of the ADRestore command line utility. AdRestore enumerates all Tombstoned objects in your Domain and gives you the option to restore them individually as needed per your selections.

Why do we recommend it?

Offers a GUI to locate and restart soft-deleted AD objects.

Who is it recommended for?

Works well for AD admins who want to restore accidentally-deleted AD objects.

This was all done through the command-line, until recently Guy Teverovsky created a GUI version of the program for those not comfortable or familiar with the command-line version. For more information and to download AdRestore.NET, please visit the official site. For more information on GUI Edition, click here.

25. Active Directory Explorer

AD Explorer is an Advanced Viewer for searching, editing, and viewing Active Directory objects and properties quickly and easily without having to drill down into each object individually. You can even create snapshots of AD to view offline if you would like to work off a snapshot rather than AD live.

Why do we recommend it?

Makes it easy to navigate an AD database, including defining favorites, viewing object properties, and executing sophisticated searches.

Who is it recommended for?

Well-suited for AD admins and network administrators working in a Windows environment.

26. ADMX Migrator

ADMX Migrator is an easy-to-use GUI that comes in the form of a MMC Snap-in for converting your existing GPO ADM templates to the new ADMX file format.

Why do we recommend it?

Provides support to convert ADM files to the ADMX format. It also provides multilanguage support and version control capabilities.

Who is it recommended for?

A useful tool for network admins who want to use the ADMX format of Microsoft Windows Vista Service Pack 1.

27. BeyondTrust Privilege Explorer

Privilege Explorer is a utility that automates the process of Active Directory file permissions by analyzing and reporting on permissions levels. This program brings automation to permission analysis and reporting to one central location and assists with compliance and intrusion detection, as well as verifying that all permissions are tight and minimizing excessive permissions for unauthorized users.

Why do we recommend it?

This tool unifies multiple capabilities like centralized management, reporting, analytics, and more.

Who is it recommended for?

This is a helpful tool for admins who have to provide the necessary insights to decision-makers to help them make informed decisions.

28. Netwrix Account Lockout Examiner

Netwrix Account Lockout Examiner does just what it says in the name – It is a Freeware utility that alerts IT personnel when an account has been locked out of Active Directory and allows you to unlock the account from within the GUI of the tool or your mobile device quickly.

Why do we recommend it?

A client-server application that performs tasks like monitoring security event logs on specific domain controllers.

Who is it recommended for?

Ideal for network administrators who want to detect account lockouts in real-time.

29. NetWrix Inactive or Stale Users Finder

This tool also does exactly what it says – automates the process of finding and locking down Stale or Inactive accounts in ADUC and helps you mitigate any risk of those accounts becoming compromised and being used for malicious activities.

Why do we recommend it?

This is a free tool that supports AD user account management. It ensures that inactive accounts are not taken over by malicious actors.

Who is it recommended for?

Works well for security professionals and network admins who want to maintain the security of your network.

30. ADREPLSTATUS

Active Directory Replication Status utility is a tool that helps you analyze the Replication of Domain Controllers in your network to ensure that replication is actually replicating. This tool helps you pinpoint which domain controller has errors and which ones are not replicating correctly.

Why do we recommend it?

A small and handy tool that provides information about objects in an AD forest. Note that you can use this tool only to read information.

Who is it recommended for?

Helps AD admins to address replication issues.

31. AD Permissions Reporter

AD Permissions Reporter is used for extracting all permissions from within your domain for every object. You can additionally filter down certain objects or permissions you would like to analyze to get an understanding of their permission levels.

Why do we recommend it?

A convenient tool for reporting the permissions assigned to objects in the AD forest. It also has more than 30 predefined reports for assigning delegation rights.

Who is it recommended for?

Works well for AD admins who want to better manage the security permissions on AD objects.

32. Bulk Password Control

As the name of the software implies, this utility allows you to change passwords on Multiple/Bulk accounts at the same time using their Password generator feature. You can also use the same password for every account if needed as well. Additional features of this utility include enabling and disabling active directory accounts in bulk, as well as Unlocking them in bulk.

Why do we recommend it?

A handy utility for changing passwords in bulk. It also comes with query features to easily find the passwords you want to update.

Who is it recommended for?

A good tool for security professionals and network admins of small organizations.

33. Lepide Active Directory Bulk Image Editor

Bulk Image Editor gives you the flexibility of uploading and managing images for Active Directory “thumbnailPhoto” and “jpegPhoto” attributes on the fly – and FREE!

Why do we recommend it?

A free tool that makes it easy to upload images to AD in bulk. Also, it's a small program that consumes little resources.

Who is it recommended for?

A useful tool for AD admins, especially in organizations that are setting up or migrating to AD.

You can also display images from all accounts, export existing images, and upload images in bulk using the SAM or common name of accounts as well.

34. Lepide Last Login Report

Extracting Last Login information for Active Directory Users is Easier than ever with Lepide's Last Login Report tool – you can easily display information about users and their last Login time in bulk and export if necessary to CSV or HTML format for further processing.

Why do we recommend it?

Provides detailed information about all AD activities and generates reports accordingly. It also comes with predefined templates.

Who is it recommended for?

A handy option for AD users to generate detailed reports.

You can also search individual login times and dates by searching any column for specific information.

35. Lepide Active Directory Query

Easily query Active Directory to get detailed information about users and objects with Active Directory through this easy, GUI based utility. You can further export data to a CSV file and get individual reports as necessary.

Why do we recommend it?

Makes it easy to monitor and audit all that's happening on your AD platform. It can also generate alerts.

Who is it recommended for?

Ideal for AD admins as it helps them to find vulnerabilities and fix them right away.

36. Specops Password Auditor

Specops Password Auditor is a free tool that scans Active Directory to detect password and privileged account security vulnerabilities. These insights can be used to reduce attack surface or maintain compliance.

Why do we recommend it?

A free tool that checks AD for password vulnerabilities and provides contextual information about them.

Who is it recommended for?

Well-suited for AD admins who work in large organizations. Specifically, it is suited for organizations that have to meet strict compliance requirements.

The tool scans Active Directory to identify accounts that are utilizing leaked passwords against a list of close to billion previously leaked passwords, in addition to gauging password policy strength against brute force attacks and compliance requirements such as NIST and PCI.The tool can also pin-point stale or inactive admin accounts in addition to the following:

• Accounts with identical passwords
• Accounts that don't require passwords
• Accounts that don't have password complexity requirements
• Accounts with expired passwords
• Accounts that have password expiration approaching

The collected information will be used to display multiple interactive reports depicting the aforementioned vulnerabilities. The reports are exportable to csv files and some useful display features include:

• Sliding timeline to track days since last login for stale admin accounts
• Sliding timeline to track days until password expiration

Specops Password Auditor will only read information from Active Directory, it will not make any changes. It will compare password hashes against password hashes in the blacklist and read the Default Domain Password Policy and any Fine-Grained Password Policies if it’s run by a user with administrative privileges in Active Directory.

It will read the Default Domain Password Policy and any Fine-Grained Password Policies if it’s run by a user with administrative privileges in Active Directory.

37. AD FastReporter

AD FastReporter by Albusbit is a tool that assists you with Generating reports on your AD infrastructure.

You have the option to choose from several report categories including the following:

• Users
• Computers
• Groups
• Exchange
• Contacts
• Printers
• Group Policy Objects
• Organizational Units (OU)

They have pre-built reports that allow you to quickly run a report without much effort and output the information that your looking for fairly quickly. Ad FastReporter utilizes a built-in Local database so there is no overhead or stress on your AD infrastructure when running reports and storing them.

Features that Ad FastReporter includes are as follows:

• Compile and Export AD Reports
• Email Reports directly from within the Program
• Custom Reports using Filters and Granular Options (Pro Version only)
• Compatible with Windows XP Sp3 to 2003 Server
• Over 200 Pre-Built Reports

Why do we recommend it?

Helps ensure all AD reporting modules are working fine. This includes generation, storing, and scheduling modules.

Who is it recommended for?

A good tool for AD admins who are responsible for generating timely reports.

They also give you the option to export reports to CSV, XLSX, and HTML and send reports via Email as well!

This Program has a FREE Version and a Paid version that allows for added Features and Automation (Windows Task Schedular, etc)

38. AD Photo Editor

AD Photo Editor from Albusbit.com allows you import/upload custom images for Active Directory User and Contacts as either thumbnailPhoto or jpegPhoto attribute.

These Photos can then be used within the following programs that integrate with AD:

• Outlook Emails
• Outlook Contacts
• Global Address List Photos (GAL)
• Sharepoint
• Lync
• Skype for Business
• and other other 3rd Party App

Why do we recommend it?

Makes it easy to upload user information including photos. Integrates well with many third-party applications.

Who is it recommended for?

A user-friendly application for AD admins to better manage their AD users.

There are 2 Versions of this software – a FREE Version and a Paid version. The Free Version allows you to Find Accounts and Upload/Edit Photos within AD and the Pro Version allows you to Bulk Import/Export Photos to and from Active Directory!

You can Find/Import photos into Active using:

• common name (cn),
• username (sAMAccountName),
• ambiguous name resolution (anr),
• email address (mail),
• employee ID (employeeID),
• or add additional custom attributes

On top of all those benefits, you can also adjust and modify images at upload, including Changing Dimensions, Rotate AD Images, Change Quality (compression) of Images and Add Watermarks to AD images as well.

This program really does have quite a few features that should Cost something, but in all reality is FREE! We definitely like the value in this AD tool!

39. AD Administrator from AlbusBit

AD Administrator tools from AlbusBit were built with the sole purpose of quickly managing AD Users/Computers for a single interface.

This tool has the following features for Managing Active Directory:

• Manage, Search, View and Edit AD Accounts/Users and Computers
• 16 Built-In Functions for that can be Run against AD, including:
  • Disable
  • Delete
  • Enable
  • Move to OU
  • Set description
  • Set expiry date
  • Add to group
  • Remove from group
  • Remove from all groups
  • Hide from GAL
  • Set random password
  • Set password never expire
  • Delete home drive
  • Run external script
  • Clear custom LDAP attribute
  • Disable OWA
• Find Inactive Users/Computer Accts that are Dormant
• Manage Multiple Active Directory Domains from Single Interface
• Export Reports to Excel, CSV and HTML

Why do we recommend it?

Provides a single interface for managing user and computer accounts across your entire AD domain. It's also a lightweight and affordable desktop app.

Who is it recommended for?

Works well for AD admins of small organizations.

This is a great all-in-one tool for managing AD Users and Accounts from a centralized location and gives you the ability to manage multi-domain environments as well!

40. Sysmalogic AD Reporter Builder

We reviewed Symalogic AD Report builder here and wanted to add this software to this post as well, as they have a FREE Version that gives you some great features to use without having to upgrade to the full version.

To see a Full list of their Features, have a look at the link below – We'll highlight the features of their Free Versions here:

• Full result view (no row limit)
• No expiration date
• Multi-domain use
• All Built-in reports
• Add or remove columns
• Non-replicated reports
• Set any search target
• Grid text filters/column
• Export report to CSV

Why do we recommend it?

A simple tool to search through AD objects and generate tabular reports as needed. It can also be used across domains.

Who is it recommended for?

A handy tool for AD admins who want to generate reports across multiple domains.

This tool helps you audit Active Directory for Compliance as well as gives you insights and reports into your AD infrastructure, Computers/Users and OU's!

Grab a Free Download from their site to get started!