Can Orchestrator use GMSA's?
I can't find any documentation that specifically says no or even mentions GMSA's at all in regards to Orchestrator specifically.
We are trying to tighten security by using GMSA's for AAP on the VBR servers, including for DC's.
If we can't use a GMSA inside Recovery Plans, then it seems we will still need a normal service account for any testing or scripts that require Local Admin.
-
- Enthusiast
- Posts: 34
- Liked: 6 times
- Joined: Sep 07, 2021 5:37 pm
- Full Name: TW
- Contact:
-
- VP, Product Management
- Posts: 1479
- Liked: 369 times
- Joined: Jan 01, 2006 1:01 am
- Contact:
Re: GMSA use in Orchestrator
Hi,
Currently Orchestrator only collects Datacenter and Cloud credentials from VBR; it doesn't collect gMSA credentials, so they are not available for use in recovery plans.
However we have numerous security-focused features on the roadmap and adding gMSA is on that list, so although I can't yet promise a specific release vehicle, this capability is coming soon.
Hope that helps!
Currently Orchestrator only collects Datacenter and Cloud credentials from VBR; it doesn't collect gMSA credentials, so they are not available for use in recovery plans.
However we have numerous security-focused features on the roadmap and adding gMSA is on that list, so although I can't yet promise a specific release vehicle, this capability is coming soon.
Hope that helps!
Who is online
Users browsing this forum: No registered users and 1 guest