Active Directory Security Tip #14: Group Managed Service Accounts (GMSAs)

News
Yanac

Group Managed Service Accounts (GMSAs) User accounts created to be used as service accounts rarely have their password changed. Group Managed Service Accounts (GMSAs) provide a better approach (starting in the Windows 2012 timeframe). The password is managed by AD and automatically changed. This means that the GMSA has to have security principals explicitly delegated … Continue readingActive Directory & Azure AD/Entra ID SecurityRead More