Hi.
we have ADFS 3.0 ( 1 server, not a farm ) with groupmanaged service account. All Works fine. Now - i see on DC, on one moment that password for this object has been changed.
| Description: |
| An attempt was made to reset an account's password. Subject: Security ID: NT AUTHORITY\SYSTEM Account Name: DC1$ Account Domain: DOMAIN Logon ID: 0x3e7 Target Account: Security ID: DOMAIN\First_gMSA$ Account Name: First_gMSA$ Account Domain: DOMAIN |
. And about ~40 min later login via ADFS to third party saas stopped to work.
In security log on ADFS server following events started to show up.
---------------
An account failed to log on.
Subject:
Security ID: DOMAIN\First_gMSA$
Account Name: First_gMSA$
Account Domain: DOMAIN
Logon ID: 0x872CA
Logon Type: 3
Account For Which Logon Failed:
Security ID: NULL SID
Account Name:
Account Domain:
Failure Information:
Failure Reason: An Error occured during Logon.
Status: 0xC000018D
-------------
ADFS service runs under this account and after restarting service all was fine again.
Error code should be - STATUS_TRUSTED_RELATIONSHIP_FAILURE
So - the question is - HOW should service proceed password change or should any additional configurations performed ( which are missed by me.