Share via

Best practice for service account

dylanand2-7592 360 Reputation points
2024-10-16T16:03:21.36+00:00

Hello,

For security reasons, we don't want to use domain admin accounts for joining systems to the domain. But a normal user service account has a limited number to join systems to the domain. What's the best practice for the domain join service account during SCCM OSD?

Microsoft Configuration Manager Deployment
Microsoft Configuration Manager Deployment
Microsoft Configuration Manager: An integrated solution for for managing large groups of personal computers and servers.Deployment: The process of delivering, assembling, and maintaining a particular version of a software system at a site.
984 questions
0 comments
Accepted answer
  1. Simon Ren-MSFT 34,771 Reputation points Microsoft Vendor
    2024-10-17T02:22:07.9333333+00:00

    Hi,

    Thanks for posting in Microsoft MECM Q&A forum.

    We can create the least privilege domain join account in below guides to join systems to the domain during OSD process.

    Correct Domain Join Account Permissions – SCCM / MDT OS Deployment

    Minimum Permissions Required for Account Used to Join Computers to a Domain During OS Deployment

    Please note: The links are not from Microsoft, just for your reference. Thanks for your time. Have a nice day!

    Best regards,

    Simon

    If the response is helpful, please click "Accept Answer" and upvote it.

    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

    0 comments

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.