Manage AD from a PC that is not Member of the Domain
If you are remote and want to manage Active Directory from a computer that is not part of the AD domain.
VPN into the office
For Windows 10/11, add “RSAT: Active Directory Domain Services and Lightweight Directory Services Tool” to Windows. This is an Optional Feature in Windows so if you go to Optional Features you should be able to find it and add it.
Go to command line and change directory to C:\windows\system32
Run the following command
runas /netonly /user:User@Domain.Whatever “mmc dsa.msc /domain=Domain.Whatever”
Where user@Domain.Whatever is a domain user with domain admin privileges so if the user is John and the domain is domain.local, that would be John@Domain.local
Domain.Whatever would be Domain.local in the example above.