Permission Required when an Active Directory User is a Member of the Domain Admin Group

No special permission is required for the following Active Directory versions:

 • Windows 2003

 • Windows 2003R2

 • Windows 2008

For Windows 2008 R2 and Windows 2012, the Domain Admin group does not have full control on certain registry keys in the Windows operating system by default. In order to get the CDA to work, Active Directory admin must give the Active Directory user Full Control permissions on the following registry key: HKEY_CLASSES_ROOT\CLSID\{76A64158-CB41-11D1-8B02-00600806D9B6}.

In order to grant full control, the Active Directory admin must first take ownership of the key. To do this:

 1. Go to the Owner tab by right clicking the key.

 2. Click Permissions.

 3. Click Advanced.