Sunday, May 12, 2013

Managed Account 20 characters limit

This is something I never noticed in my previous SharePoint Installations. Did you ever know that the maximum character limit on the SharePoint service account is 20 characters?

I was not able to register the service account with the name longer than 20 characters
This is what I did

I tried to create a Managed Account via Central Administration

1) From Central Admin -> click Security->General Security -> Configure managed accounts"
2) Clicked on "Register Managed Account"
3) In "User name" entered Domain\Service-Account (obviously more than 20 characters)
4) Entered password
5) I created my service account with passwords that never expires left the boxes below that as it is.

The following error occurs: The specified user Domain\Service-Account could not be found. Some or all identity references could not be translated.

I tried doing the same via PowerShell and this is what I got.
$cred = Get-Credential Domain\Service-Account
New-SPManagedAccount -Credential $cred

Lesson Learned: Plan for your service accounts ahead and keep it less than 20 characters if you want to register them as a managed account

No comments:

Post a Comment