Skip navigation
Menu
End-User Platforms>Active Directory

How can I let users search, but not browse, Active Directory (AD)?

A. You can use either a policy setting or the registry to configure AD for browsing. To use the policy setting method, perform the following steps:

  1. Open Group Policy with the Group Policy Editor (GPE).
  2. Navigate to User Configurations, Administrative Templates, Desktop, AD.
  3. Double-click "Hide Active Directory folder."
  4. Select the Policy tab.
  5. Click Enabled, and click OK.
  6. Close the policy.

To use the registry to complete the same task, perform the following steps:

  1. Start the registry editor (e.g., regedit.exe).
  2. Navigate to HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft.
  3. If the Windows key doesn't exist, click Edit, New, Key to create the key.
  4. Look for "Directory UI" under the Windows key, and if it doesn't exist, click Edit, New, Key to create the key.
  5. From the Edit menu, select New-DWORD Value.
  6. Enter a name of HideDirectoryFolder, and press Enter.
  7. Double-click the new value, set it to 1, and click OK.
  8. Close the registry editor.
Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
computer password entry box overlaying a keyboard
How To Use PowerShell for Active Directory Password Help
Mar 18, 2024
Microsoft CEO Satya Nadella on stage at Microsoft Ignite 2023
Top 10 Stories About Microsoft in 2023
Dec 22, 2023
A keyboard key shows a cloud icon and says the word 'connect'
How to Access Azure AD in PowerShell
May 09, 2023
arrows on a blue background
How To Import the PowerShell Active Directory Module
May 02, 2023