You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Assuming a very large number of Managed Service Account management, it is not performant to manage their SPNs and TrustedForDelegation setting independently.
There already is a separate resource for Service Principal Names, but it would be very helpful to add the ability to set the SPN attribute for the AD Managed Service Account via the MSFT_ADManagedServiceAccount directly. Also the AD User supports TrustedForDelegation.
PowerShell version and build the target node is running
5.x Win2022
ActiveDirectoryDsc version
ActiveDirectoryDsc 6.2.0
The text was updated successfully, but these errors were encountered:
rismoney
changed the title
MSFT_ADManagedServiceAccount to optionally accept an array of SPNs
MSFT_ADManagedServiceAccount to optionally accept an array of SPNs and also support for TrustedForDelegation
Aug 30, 2024
Problem description
Assuming a very large number of Managed Service Account management, it is not performant to manage their SPNs and TrustedForDelegation setting independently.
There already is a separate resource for Service Principal Names, but it would be very helpful to add the ability to set the SPN attribute for the AD Managed Service Account via the MSFT_ADManagedServiceAccount directly. Also the AD User supports TrustedForDelegation.
Verbose logs
DSC configuration
n/a
Suggested solution
Operating system the target node is running
PowerShell version and build the target node is running
ActiveDirectoryDsc version
The text was updated successfully, but these errors were encountered: