Versions Compared

Old Version 1

changes.mady.by.user Beth Albertson

Saved on

compared with

New Version Current

changes.mady.by.user Beth Albertson

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

There are five key administrative benefits associated with MSAs:

  1. MSAs offer enhanced security that is provided by having individual accounts for critical services

  2. You can create a class of Domain Service Accounts that can be used to manage and maintain services on local computers.

  3. Network passwords for MSAs are automatically reset.

  4. You do not have complex service principal name (SPN) management tasks when using Managed Service Account.

  5. Administrative tasks for Managed Service Account can be delegated to non-administrators.

See Microsoft’s documentation for details.

...

If you are using an account that requires a password or private key, these secrets must be kept safe. Use a password safe. Another option is an encrypted, secured document. Make sure the encryption algorithms are using current industry standardsThese secrets should not be stored in an unencrypted file or on a piece of paper under your keyboard! Using a password manager is a best practice.

Informational Resources

Managed Service Accounts and Group Managed Service Accounts on Windows

...