-
Notifications
You must be signed in to change notification settings - Fork 224
CredentialOverview
To support Group Managed Service Accounts (gMSAs) the DSC resource must support it. This also applies to Managed Service Accounts (MSAs).
There are more information about using (g)MSAs with SQL Server in the article Configure Windows Service Accounts and Permissions in section Managed Service Accounts, Group Managed Service Accounts, and Virtual Accounts
To use a (g)MSA with a DSC resource you should pass the (g)MSA account name in the credential object and use any text string as password.
It is not possible to pass
$nullas password, it is a limitation by how the MOF is generated when encrypting passwords.
If there is a resource that you find that will not work with a (g)MSAs then please submit a new issue. Then the community can work together to support (g)MSAs for that DSC resource too.
For designing a resource for (g)MSAs see the section Group Managed Service Account in the contribution guidelines.
This was discussed in issue #738.
To use a built-in account with a DSC resource you should pass the built-in account name, e.g. 'NT AUTHORITY\NetworkService' in the credential object and use any text string as password.
It is not possible to pass
$nullas password, it is a limitation by how the MOF is generated when encrypting passwords.
If there is a resource that you find that will not work with a built-in account then please submit a new issue. Then the community can work together to support built-in accounts for that DSC resource too.
- CredentialOverview
- SqlAG
- SqlAGDatabase
- SqlAgentAlert
- SqlAgentFailsafe
- SqlAgentOperator
- SqlAGListener
- SqlAGReplica
- SqlAlias
- SqlAlwaysOnService
- SqlAudit
- SqlConfiguration
- SqlDatabase
- SqlDatabaseDefaultLocation
- SqlDatabaseMail
- SqlDatabaseObjectPermission
- SqlDatabasePermission
- SqlDatabaseRole
- SqlDatabaseUser
- SqlEndpoint
- SqlEndpointPermission
- SqlLogin
- SqlMaxDop
- SqlMemory
- SqlPermission
- SqlProtocol
- SqlProtocolTcpIp
- SqlReplication
- SqlRole
- SqlRS
- SqlRSSetup
- SqlScript
- SqlScriptQuery
- SqlSecureConnection
- SqlServiceAccount
- SqlSetup
- SqlTraceFlag
- SqlWaitForAG
- SqlWindowsFirewall
- Add-SqlDscNode
- Add-SqlDscTraceFlag
- Complete-SqlDscFailoverCluster
- Complete-SqlDscImage
- Connect-SqlDscDatabaseEngine
- ConvertFrom-SqlDscDatabasePermission
- ConvertFrom-SqlDscServerPermission
- ConvertTo-SqlDscDatabasePermission
- ConvertTo-SqlDscServerPermission
- Disable-SqlDscAudit
- Disconnect-SqlDscDatabaseEngine
- Enable-SqlDscAudit
- Get-SqlDscAudit
- Get-SqlDscConfigurationOption
- Get-SqlDscDatabasePermission
- Get-SqlDscManagedComputer
- Get-SqlDscManagedComputerService
- Get-SqlDscPreferredModule
- Get-SqlDscServerPermission
- Get-SqlDscStartupParameter
- Get-SqlDscTraceFlag
- Import-SqlDscPreferredModule
- Initialize-SqlDscRebuildDatabase
- Install-SqlDscServer
- Invoke-SqlDscQuery
- New-SqlDscAudit
- Remove-SqlDscAudit
- Remove-SqlDscNode
- Remove-SqlDscTraceFlag
- Repair-SqlDscServer
- Save-SqlDscSqlServerMediaFile
- Set-SqlDscAudit
- Set-SqlDscDatabasePermission
- Set-SqlDscServerPermission
- Set-SqlDscStartupParameter
- Set-SqlDscTraceFlag
- Test-SqlDscIsDatabasePrincipal
- Test-SqlDscIsLogin
- Test-SqlDscIsSupportedFeature
- Uninstall-SqlDscServer