cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Adding a gMSA account to the Access from Network user rights for Entra Joined devices

Steve_Bauer
Copper Contributor

‎Mar 07 2024 03:38 PM

‎Mar 07 2024 03:38 PM

Adding a gMSA account to the Access from Network user rights for Entra Joined devices

How should a person be adding this gMSA account to the Entra joined device?  When I put it in intune using the SID method (asterisk in front of the sid), the client machine (Windows 11 23H2) errors out with an error Result:(0x80070534) No mapping between account names and security IDs was done.  If I leave the SID of the gMSA account out of the policy, then the policy will apply.

389 Views
0 Likes
3 Replies
Reply
3 Replies
Steve_Bauer

‎Mar 19 2024 07:27 AM

‎Mar 19 2024 07:27 AM

Re: Adding a gMSA account to the Access from Network user rights for Entra Joined devices

Yes that is the guide I am following. In the section Configure a Device profile for Microsoft Entra Joined Devices only, I have not been successful adding the group managed service account sid of our Defender for Identity Directory Service account to the Access from Network User Rights assignment (step 3)
0 Likes
Reply
am1357

‎Apr 21 2024 11:33 PM

‎Apr 21 2024 11:33 PM

Re: Adding a gMSA account to the Access from Network user rights for Entra Joined devices

I have the same problem. Configuring "Network Access Restrict Clients Allowed To Make Remote Calls To SAM" works but "Access From Network" always returns an error (when adding the gMSA as SID or name).
0 Likes
Reply