Manage AD from a PC that is not Member of the Domain

If you are remote and want to manage Active Directory from a computer that is not part of the AD domain.

VPN into the office
For Windows 10/11, add “RSAT: Active Directory Domain Services and Lightweight Directory Services Tool” to Windows. This is an Optional Feature in Windows so if you go to Optional Features you should be able to find it and add it.

Go to command line and change directory to C:\windows\system32

Run the following command

runas /netonly /user:User@Domain.Whatever “mmc dsa.msc /domain=Domain.Whatever”

Where user@Domain.Whatever is a domain user with domain admin privileges so if the user is John and the domain is domain.local, that would be John@Domain.local
Domain.Whatever would be Domain.local in the example above.