Showing posts with label Managed Account in SharePoint 2010 using Central administration or using Powershell. Show all posts
Showing posts with label Managed Account in SharePoint 2010 using Central administration or using Powershell. Show all posts

Sunday, January 27, 2013

Managed Account using Powershell/Central Adminstration in SharePoint 2010

Managed Account using Power shell/Central Administration in SharePoint 2010

Managed Accounts:

Managed Accounts is a new feature in SharePoint 2010. Managed accounts are Active Directory user accounts whose credentials are managed by and contained within SharePoint. When administrators configure a new web application or service application they don't have to remember the username and passwords every time if the service account is registered. They can just simply select the managed account and they can configure the web application and service application. For example when administrator create a new web application (Go to Central Administration => Application management => Manage Web Applications => Click New in the ribbon interface).


Administrator can just choose the service account (whose account is already is registered) for the application pool from the drop down as shown in the following 



Automatic password change:

SharePoint 2010 also introduces automatic password change.

Automatic password change enables SharePoint to automatically generate new strong passwords on a schedule you set. You can select the Enable automatic password change checkbox to allow SharePoint to manage the password for the selected account.

If an account policy based expiry date is detected for the account, and the expiry will occur before the scheduled date and time, the password will be changed on a configured number of days before the expiry date at the regularly scheduled time.

We can choose to enable e-mail notifications in order to have the system generate warning notifications about upcoming password change events.

We can also specify a time and schedule for the system to automatically change the password.



Register Managed Account:


Go to Central Administration => Security => General Security => Configure managed accounts.



You could be able to see all the managed accounts.

In this we will be seeing how to register a new managed account using power shell.



ou can register a new managed account for the specified Username and Password.

The same thing can be achieved using the following powershell cmdlet.


New-SPManagedAccount:

New-SPManagedAccount Registers a new managed account for the specified Username and Password.

Go to Start => All Programs => Microsoft SharePoint 2010 Products =>SharePoint 2010 Management Shell => Run as administrator.

Type the following command

New-SPManagedAccount

A message box will pop up to enter the credentials.




Enter the credentials and click on Ok.A new Managed account is registered successfully.
Note: For more information on New-SPManagedAccount cmdlet refer
http://technet.microsoft.com/en-us/library/ff607831.aspx 


Using Central Administration

To configure managed service accounts in SharePoint 2010:
  •     Open SharePoint Central Administration
  •     Click on Application Management | Manage Web Applications
  •     Click on New button on the ribbon
  •     Fill in the text fields in IIS Website, Security Configuration, and Public URL sections, until you reach Application Pool section. This is where the fun begins...
  •     You can use one of already pre-configured managed accounts or create new one. To use an existing managed account simply pick one from the drop-down list. To create new managed account, click on Register New Managed Account
  •     Fill in the username and password fields (Note: for some reason there is no "confirm password" field, so make sure you type the password correctly the first time.) This screen also allows you to configure Automatic Password Change schedule. Pretty neat.
  •     Click OK to save newly configured managed account. Now you're back at Create New Web Application window, where you can see your managed account in the drop-down list.
  •     If administrators want to pre-configure managed accounts, they can do so in the SharePoint Central Administration. Click on Security | Configure managed accounts (under General Security section). Click on Register Managed Account to configure new managed account, or click on Edit to make changes to an existing managed account.