- Lab
-
Libraries: If you want this lab, consider one of these libraries.
- Cloud

Create and Deploy a Group Managed Service Account (gMSA)
In this hands-on lab, you will learn how to create and deploy a group Managed Service Account.

Lab Info
Table of Contents
-
Challenge
Configure the Environment
Log in to both VMs and then join the
dev-vm
tocorp.SandyNetworking01.com
. -
Challenge
Configure the KDS Root Key
Next, we need to configure our KDS root key.
Helpful Hint: Keep in mind that you have to set it back 10 hours or it won't take effect when you need it to.
-
Challenge
Create a Global Group
Create a global group named
SandyGroup
and add both servers into this group. -
Challenge
Create a New gMSA
We are ready to create the group Managed Service Account. In this objective, create a gMSA and include
SandyGroup
as the principal allowed to retrieve the managed password. -
Challenge
Test the gMSA
Finally, we will test the gMSA by creating a task in the scheduler that opens
Notepad.exe
using the gMSA instead of standard computer privileges.
About the author
Real skill practice before real-world application
Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.
Learn by doing
Engage hands-on with the tools and technologies you’re learning. You pick the skill, we provide the credentials and environment.
Follow your guide
All labs have detailed instructions and objectives, guiding you through the learning process and ensuring you understand every step.
Turn time into mastery
On average, you retain 75% more of your learning if you take time to practice. Hands-on labs set you up for success to make those skills stick.