What is a one sentence summary of your feature request?
The ability to use a gMSA (Group Managed Service Account) for the tools installed with Auditor, such as IUT, PEN, Active Directory Restore and the Event Log Manager.
Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.
These tools do not support using a gMSA, even though the data sources within Auditor allow it. This creates an issue when attempting to use tools installed with Auditor. Such as the Active Directory Object Restore tool which will not display collected snapshots if a gMSA is used as the data collection account in the Active Directory monitoring plan. The IUT, PEN and the Event Log Manager require a password for the data collection account, preventing the use of a gMSA.
How do you currently solve the challenges you have by not having this feature?
Currently, if you’re using a gMSA as the data collection account in your Active Directory plan, you’ll need to switch to a standard service account in order to run the Active Directory Object Restore tool. Additionally, a standard service account is required for the IUT, PEN, and Event Log Manager tools.