IT Consultant Everyday Notes

Just some problems/solutions storage

ADFS: Device registration adventure with GMSA account

I decided to set up a Lab environment for Windows Hello for Business. One of commands required on ADFS server is Initialize-ADDeviceRegistration. Syntax for the command is pretty easy, but all my attempt failed with:

Error:

Initialize-ADDeviceRegistration : The specified identity ‘mydomain\myADFSserviceaccount’ could not be found. Some or all identity references could not be translated

Reason: I am using a Managed Account for ADFS, so I need to put “$” at the end of the account name: ‘mydomain\myADFSserviceaccount$’

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: