Comments (2)
  1. Vemund Haga says:

    Great to finally have gMSA working for SQL Server and thank you for a good post describing how to configure it.

    If you cannot follow the steps in “Grant the gMSA account the “Validated write to service principal name” permission”, you need to turn on Advanced features in Active Directory Users and Computers. Right-click the domain and choose All Tasks – Advanced features.

  2. Jose Antonio says:

    I follow your instructions, all work less spn registration: “2016-06-27 12:04:41.25 Server The SQL Server Network Interface library could not register the Service Principal Name (SPN) [ MSSQLSvc/ ] for the SQL Server service. Windows return code: 0x200b, state: 15. Failure to register a SPN might cause integrated authentication to use NTLM instead of Kerberos. This is an informational message. Further action is only required if Kerberos authentication is required by authentication policies and if the SPN has not been manually registered.”

Comments are closed.

Skip to main content