Steven B. Posted October 9 Share Posted October 9 Hello, The connection to the UEM console does not work for synchronized accounts that are members of the Active Directory “Protected users” group (https://learn.microsoft.com/en-us/windows-server/security/credentials-protection-and-management/protected-users-security-group). The error is as follows: The supplied credential is invalid We think this is because ACC uses NTLM. In the “Directory services” settings, we have chosen “GSS-Negotiate” for authentication mode. When we want to use Kerberos, we get the following error: Directory call failed. System.DirectoryServices.Protocols.LdapException: Error code:82 User Name: Error Details: What settings do we need to make in order to use Kerberos? Or how can I connect with “protected users” accounts? Quote Link to comment Share on other sites More sharing options...
Employee Solution Jason Misleh Posted October 9 Employee Solution Share Posted October 9 Good Morning, UEM Console does not currently support Protected Users. This is something that has been noted internally. This is due to the way that Protected User logins occur. You can read more about it here: https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-r2-and-2012/dn466518(v=ws.11) If you need more information, I would suggest opening an SR and/or a Feature Request. Quote Link to comment Share on other sites More sharing options...
Steven B. Posted October 9 Author Share Posted October 9 Thank you for your quick reply Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.