- Lab
- A Cloud Guru
Create and Deploy a Group Managed Service Account (gMSA)
In this hands-on lab, you will learn how to create and deploy a group Managed Service Account.
Path Info
Table of Contents
-
Challenge
Configure the Environment
Log in to both VMs and then join the
dev-vmtocorp.SandyNetworking01.com. -
Challenge
Configure the KDS Root Key
Next, we need to configure our KDS root key.
Helpful Hint: Keep in mind that you have to set it back 10 hours or it won't take effect when you need it to.
-
Challenge
Create a Global Group
Create a global group named
SandyGroupand add both servers into this group. -
Challenge
Create a New gMSA
We are ready to create the group Managed Service Account. In this objective, create a gMSA and include
SandyGroupas the principal allowed to retrieve the managed password. -
Challenge
Test the gMSA
Finally, we will test the gMSA by creating a task in the scheduler that opens
Notepad.exeusing the gMSA instead of standard computer privileges.
What's a lab?
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Provided environment for hands-on practice
We will provide the credentials and environment necessary for you to practice right within your browser.
Guided walkthrough
Follow along with the author’s guided walkthrough and build something new in your provided environment!
Did you know?
On average, you retain 75% more of your learning if you get time for practice.
