Secure Active Directory queries using gMSAs instead of password-secured service accounts
Since 7.1 the only option for querying active directory domains that require authentication other than the account running BP Server is to provide the details of a service account in the Active Directory Domains configuration section in Sign-on settings
Our security policy requires that password-secured accounts have passwords that expire daily. This is unmanageable in 7.1 as it would require us to update the stored passwords in Blue Prism immediately after the passwords have changed
Ideally, we would be able to secure the Active Directory queries with a gMSA
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.