DSC with IIS and Kerberos

This topic contains 2 replies, has 2 voices, and was last updated by  Efff dd 2 years ago.

  • Author
  • #42915

    Efff dd

    looking to configure Kerberos on my existing 2012r2 server., powershell wmf 4.
    from what I understand I need to change the Network Services account for each application. how do I pass the password using DSC?
    the password will be in clear text?


  • #42919

    Don Jones

    DSC does not permit passwords in clear text by default. Credentials must be encrypted, and you will need certificates (not self-signed) to do that. https://blogs.msdn.microsoft.com/powershell/2014/01/31/want-to-secure-credentials-in-windows-powershell-desired-state-configuration/ discusses the technique.

    • #43119

      Efff dd

      do I need to worry about passwords, under DSC? I was looking to start using Kerberos with IIS behind a F5 load balancer and I need to change the identity from Application Pool Identity NETWORK SERVICE to something else.

      • This reply was modified 2 years ago by  Efff dd.

You must be logged in to reply to this topic.