Technology Tips and News
Hi Team,
We have a service account for our SCCM infra that is used for client push and same is configured as Site address account, and in client Agent, also for the software update point account.
Due to security concerns password for that service account will now be managed by CyberArk, that means will be changed everyday.
Can you please help me to get a feasible solution for this.. Any help would be appreciated.
Ouch, no way around this other than entering it in manually.
Thanks Rob,
You mean, for Address, we should use Computer account, and for Software Update Point Component properties we need to have an account which should have a static password, and same applies for Computer Client Agent? can this be cleared and system pick the default computer account?
How about the Network access account for client Push Installation does that need to be with static password or computer account will work for client push as well?
the only user account I use anywhere in CM is the network access account. Computer accounts can be used for everything else.
You are going to have to get your security team to grant an exclusion on the password policy for the NAA. There's simply no way possible you can change that each 24 hours. Of course you only need the NAA if you are doing OSD, otherwise you don't need any passwords that I can think of. Maybe for SQL though.
Then I think we are Safe, we are not using OSD as of now.
for Client Push and for other site to site communication, software update configuration, computer client agent we can have a computer account.
Thanks
This topic is archived. No further replies will be accepted.
Other recent topics
Click here to get your free copy of Network Administrator. Over 25 plugins to make your life easier