question

saikiranAkula-4340 avatar image
1 Vote"
saikiranAkula-4340 asked Thameur-BOURBITA commented

Is there a possible way to make GMSA supported for linux containers

I am looking if there is a way to use GMSA authentication for a .net core application running on linux container on a linux host.

I tried using the method provided here https://www.dsinternals.com/en/retrieving-cleartext-gmsa-passwords-from-active-directory/ but found that interative login "Kinit" won't work with AD.

More details:
1. The linux host I am using is domain joined to AD server and have access to retrieve passwords from AD
2. https://docs.microsoft.com/en-us/virtualization/windowscontainers/manage-containers/manage-serviceaccounts - I used the link that provides info how to configure GMSA account
a. The way docker is reading credspec file is only enabled fo windows machine

If anyone have thoughts how to approach this please do share it here. Thank you.

windows-serverwindows-active-directorydotnet-ad
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

Thameur-BOURBITA avatar image
0 Votes"
Thameur-BOURBITA answered Thameur-BOURBITA commented

Hi,

No it's not supported for Linux envirement.

GMSA is supported on Widows server 2012 or higher domain member servers (Windows 8 or upper domain joined computers also supported).

To have more details you can read this article:

329864




Please don't forget to mark helpful reply as answer

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Is there any mechanism to make it work with Linux environment. Is there any specific reason why it won't work on Linux?

0 Votes 0 ·

GMSA is not supported not only Linux, there are also some Microsoft application doesn't support it.

0 Votes 0 ·