Use a service account to configure the Pass-trough Authentication Agent

Leo Johnson 151 Reputation points
2021-06-17T16:55:41.98+00:00

Hi all,

At the moment we are using 1 Azure AD Connect server with Pass-trough Authentication configured.

One of our former employees installed a second server for Pass-trough Authentication high availability.

I'm reading his documentation: He installed the Pass-trough Authentication Agent with his own credentials and connected with his own Azure Admin account the agent to Azure AD.

Is this best practice? Don't you need to use a service account?

Will there anything go wrong when we delete the account of the former employee?

Please, let me know!

Leo

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,277 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Marilee Turscak-MSFT 36,811 Reputation points Microsoft Employee
    2021-06-18T18:41:49.163+00:00

    Hi @Leo Johnson ,

    The How to Connect PTA Quick Start guide says to configure it with the global tenant admin credentials, and that is always how I have done it as well.

    Where do you see guidelines recommending a service account? To which step are you referring?

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.