DSC with IIS and Kerberos

Tagged: 

This topic contains 2 replies, has 2 voices, and was last updated by Profile photo of Efff dd Efff dd 5 months, 3 weeks ago.

  • Author
    Posts
  • #42915
    Profile photo of Efff dd
    Efff dd
    Participant

    Hello
    looking to configure Kerberos on my existing 2012r2 server., powershell wmf 4.
    from what I understand I need to change the Network Services account for each application. how do I pass the password using DSC?
    the password will be in clear text?

    thanks

  • #42919
    Profile photo of Don Jones
    Don Jones
    Keymaster

    DSC does not permit passwords in clear text by default. Credentials must be encrypted, and you will need certificates (not self-signed) to do that. https://blogs.msdn.microsoft.com/powershell/2014/01/31/want-to-secure-credentials-in-windows-powershell-desired-state-configuration/ discusses the technique.

    • #43119
      Profile photo of Efff dd
      Efff dd
      Participant

      do I need to worry about passwords, under DSC? I was looking to start using Kerberos with IIS behind a F5 load balancer and I need to change the identity from Application Pool Identity NETWORK SERVICE to something else.

      • This reply was modified 5 months, 3 weeks ago by Profile photo of Efff dd Efff dd.

You must be logged in to reply to this topic.