Which of the following is true regarding Group Managed Service Accounts (gMSAs) in Windows?
- gMSAs are supported on Windows Server 2008 R2 and later versions.
- gMSAs do not have passwords.
- gMSAs are not supported in SQL Server.
- gMSAs can be used to run Scheduled Tasks.
EXPLANATION
gMSAs can be used to run Scheduled Tasks, but as of Windows Server 2016, their assignment to tasks is still not supported through the Task Scheduler MMC. Whenever you go to assign one to a task and try to set the task to run without the account being logged on, the console will complain about not receiving a password for the account.10.196.10.135"The fundamental problem is that you can’t use the Task Scheduler UI. So we’ll use PowerShell cmdlets, instead. (You could also use schtasks.exe with an XML config file, but I’ll let you figure that one out yourself)."
gMSAs are supported on Windows Server 2008 R2 and later versions.MSAs are supported on WS 2008 R2 (but are limited to use on a single computer). gMSAs require WS 2012 or later.
gMSAs are not supported in SQL Server.
gMSAs (and MSAs) can be used with SQL Server 2012 and later versions. MSAs can't be used when failover clustering SQL Server.
gMSAs do not have passwords."The password for gMSAs are generated and maintained by the Key Distribution Service (KDS) on Windows Server 2012 DCs..."
"Passwords are very complex and changed automatically as often as desired (by default every 30 days). The passwords are cryptographically random and 240 bytes long."
https://blogs.msdn.microsoft.com/markweberblog/2016/05/25/group-managed-service-accounts-gmsa-and-sq...