Forum Discussion
DirectoryServicesClient CreateLdapConnectionAsync failed to retrieve group managed service account
I created a gMSA on one of the DC's because the ADFS server could not communicate to the DC's themselves and I figured a service account wasn't cutting it. Now I am getting an error saying, "Director...
EliOfek
Microsoft
MicrosoftThe machine account does not have permissions to pull the gmsa password, you need to fix it.
How we can verify it and set permission if not present.
- EliOfekyou can use this:
https://docs.microsoft.com/en-us/powershell/module/activedirectory/test-adserviceaccount?view=windowsserver2019-ps
Ans, if you contact support, they have a tool they can give you to test it specifically with ldap.
They can walk you through correct usage of this test tool.