Cx is unable to start a sensor when he uses gMSA account instead of personal account.
The customer also had a Security Group in AD with their DC and standalone sensors included.
We added the gMDSA account in the policy Log on as a service but still faces the same error.
Unable to run AATP Ldap Binder tester tool to test MDI sensor AD access using a gMSA accout, shows "PC can't run this app error."
The DC is 2016
Health Alert when we use gMSA account.
![179865-s4.png][1]Created and Updated Security Group to DC
![179809-s2.png][2]![179873-s3.png][3]Added gSMA account in Logon as services, that too didn't resolve.
![179855-image-20220122040626-1.png][4]Unable to start AATP sensor
![179893-s5.jpg][5]Error while running aatpldapbindtester.exe file.
![179883-s5.jpg][5]