Jun 17 2021 05:11 PM - edited Jun 17 2021 05:12 PM
Hello everyone, this information has really exploded in my head because I don't understand how no one can be clear enough to explain what is going on here: DNSHostName.
I have an implementation with sensor on dedicated server, running port mirroring through hyperV. I did the test with an account and password and it worked I would say 60%, since in the alerts it indicated that the sensor had limited information capture, something like that. Then for good practices and security it was recommended to use gMSA.
The issue is that I have already created about 5 different accounts and always the same message from the portal:
Directory service user credentials are incorrect
The command I used:
New-ADServiceAccount -Name <assign_gMSA_name> -DNSHostName <?????????> -PrincipalsAllowedToRetrieveManagedPassword <security_group_name>.
Name: For example 'MDI-GMSA'.
DNSHostname: Try the FQDN of some DC, then with the FQDN of the server with dedicated sensor and a random name, for example 'GMSA'.
PrincipalsAllowedToRetrieveManagedPassword: I have a security group with all DCs.
Please help me to understand what is my problem and explain me exactly what should I add here 'DNSHostname'.
I appreciate if you can help me, thank you.
Jun 18 2021 12:17 PM
Jun 22 2021 06:29 AM
Jun 22 2021 07:57 AM
Jun 22 2021 08:07 AM