Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

Share this Page URL

Active Directory Changes > AD Administrative Center - Pg. 461

Active Directory changes 461 Managed Service Accounts Many applications and network services require the use of service accounts. These accounts are typically dedicated to a specific application and have passwords set to never expire. This requirement ensures no accidental service disruption due to a password expiring. However, this requirement poses a security problem, especially for organizations that must comply with various government regulations. Microsoft has addressed this issue with a new feature known as Managed Service Accounts. Managed Service Accounts allows the AD to automatically manage the passwords and Service Principal Names (SPNs). AD will automatically manage and change the password on a regular basis and ensure the service using the account gets the password update. A man- aged service account is created using the New-ADServiceAccount PowerShell cmdlet. AD Administrative Center