The Change Auditor Coordinator fails to connect to the Coordinator database SQL server when using a gMSA account. Foreign Forest agents fail to connect to the Coordinator when using a gMSA account. This occurs if Microsoft Patch KB5022289 or KB5022286 is applied.
How does this affect me?
If the Change Auditor Coordinator is configured to connect to the SQL server using a gMSA account, authentication will fail and the Coordinator service will shutdown. If a gMSA account is used to connect Foreign Forest agents with the coordinator, the agent will not be able to authenticate to the Coordinator service and will shutdown.
If the Coordinator is not running the agents will cached their audit data locally until the cache reaches a size of 3GB, after which new audit data will be discarded and lost.
Workaround
Customers can change the service account to a standard domain account. This will allow the Coordinator to connect to the database and agents to connect to the Coordinator.
Please review the following KB for further details on this issue, Coordinator is unable to connect to SQL using a gMSA account after applying Microsoft patches KB5022289\KB5022286 (4370029).
Status
Microsoft is aware of the impact to the Quest product and is working to provide a resolution or workaround.
We apologize for the inconvenience this issue may have caused and we are working quickly correct it and provide more information for resolution.© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center
