Closed gpa7407 closed 4 months ago
The PrincipalsAllowedToRetrieveManagedPassword
is a special property/parameter on the New-ADServiceAccount cmdlet and not an actual LDAP attribute. The actual attribute is called msDS-GroupMSAMembership
.
Closing per the above.
SUMMARY
I have been trying to set the attribute
PrincipalsAllowedToRetrieveManagedPassword
for a MSA (msDS-GroupManagedServiceAccount) account. Not sure if this is a bug or a feature request.ISSUE TYPE
COMPONENT NAME
microsoft.ad.object
ANSIBLE VERSION
COLLECTION VERSION
CONFIGURATION
OS / ENVIRONMENT
Windows Server 2022
STEPS TO REPRODUCE
EXPECTED RESULTS
I expect to set PrincipalsAllowedToRetrieveManagedPassword attribute
ACTUAL RESULTS