Information Technology Innovations

Error while creating group managed service account (gMSA). Error: Unable to install service account pGMSA_xxxx$ after 6 retries. It took some of my time to work around this issue however finally sorted it out with 3 simple steps to Modify KerberosEncryptionType. Environment: Windows Server 2022 R2 I have executed the two scripts: 1.        1.  Get-ADServiceAccount -filter *** (To find the name of the SAMAccountName)    2.     Set-ADServiceAccount -Identity SAMAccountName -KerberosEncryptionType AES128, AES256  (To modify Kerberos Encryption Type. In the above line replace SAMAccountName with your SAMAccountName)   3.     Restarted the Microsoft Entra Provisioning agent! Installation completed successfully! I have referred below two article to complete this task. https://learn.microsoft.com/en-us/answers/questions/1328559/attempting-to-set-provagentgmsa-encryptiontype-can   https:...

                  It was hard to find a complete step-by-step process for me when I was implementing cloud sync in my environment. I thought of writing a blog once complete my installation which may help many others too. Unfortunately not take any screenshots during my installation. Happy to help if anyone got struck in the below step. 1.     Add your Entra Tenant Doman name to the On-Prem (DC), if you are using a local domain name so that you can use the same UPN as your email id. a.       Refer:  Add a domain to the Active Directory — LazyAdmin   2.     Enable cloud sync from Entra Admin Centre & Download the provisioning Agent Refer:  Microsoft Entra Cloud Sync new agent configuration - Microsoft Entra ID | Microsoft Learn   3.      Install Agent in your DC or any other Domain Joined Server. (Make sure all the OU's are under DC OU) ...