RSA^® Identity Governance & Lifecycle Discussions

TimWillemstein2 · ‎2021-02-03

Hi All,

I'm wondering if any has ever setup a connection for a collector/connector using a managed service account for Active Directory, rather than a normal service account.

Managed Service Accounts are described in this post: https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/managed-service-accounts-unde....

Looking forward to your answers!

Kind regards, Tim

IanStaines · ‎2021-02-03

This would not be a question unique to RSA Identity Governance & Lifecycle. Its general for any LDAP connection to Microsoft AD. Google is your friend here. A search seems to show that Microsoft does not allow binds from Managed Service Accounts to LDAP 636 port.

Potentially this limitation would not exist with PowerShell, so it could be used for a PowerShell Connector. There is no such thing as a PowerShell Collector however.

View solution in original post

IanStaines · ‎2021-02-03

This would not be a question unique to RSA Identity Governance & Lifecycle. Its general for any LDAP connection to Microsoft AD. Google is your friend here. A search seems to show that Microsoft does not allow binds from Managed Service Accounts to LDAP 636 port.

Potentially this limitation would not exist with PowerShell, so it could be used for a PowerShell Connector. There is no such thing as a PowerShell Collector however.

View solution in original post

RSA^® Identity Governance & Lifecycle Discussions

Using Managed Service Accounts for Active Directory setup

Data Collection

RSA® Identity Governance & Lifecycle Discussions

Using Managed Service Accounts for Active Directory setup

Data Collection

RSA^® Identity Governance & Lifecycle Discussions