Here is the scenerio. We have created a ComputerAccount associated with our AzureStorageAccount so that Kerberos could utilize AES256. We have two-factor authentication in place even for users on-premise which requires an OTP password.
How can I set the ComputerAccount so the password does not expire because their is no method to run an automated script that will also grab the OTP for the account to log into Azure as part of running the Update-AzStorageAccountADObjectPassword script.
Or, do we need to scrap AES256 for Kerberos and run with a ServiceAccount where we can set the password to not expire?