This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 33%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBZ%3C/text%3E%3C/svg%3E)
Hi, can any of many accounts used by Configuration Manager 2207 be replaced with gMSA?
From what I see a little effort has been put in this by MS unlike SCOM where practically all accounts can be replaced with gMSA starting with SCOM 2019 UR1.
Thanks in advance.
(+1) to @Simon Ren-MSFT 's response. This isn't about effort, it's about technical reality. As called out, there are no truly configurable service accounts in ConfigMgr, i.e., none of the accounts in ConfigMgr actually run services, thus you can't use a managed service account construct.
Hi,
Per my experience, only the SQL Service account in MECM is a service account so that's the only one that can be configured with a managed service account.
For other accounts, for example Client Push account, Network Access account and Domain Join account for OSD, as they are not really service accounts, so none of those accounts can be gMSA.
Thanks for your time. Have a nice day!
Best regards,
Simon
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.