Active Directory Schema Attribute: ms-DS-GroupMSAMembership

What is the need for ms-DS-GroupMSAMembership attribute in Active Directory

This attribute stores the list of all security principals or requestors who have been granted access to the Active Directory (AD) group managed service account (gMSA) password.

For more details about this attribute, please refer to this MS document.

Did you know?

You can manage the file server permissions of multiple AD users and groups at once, and also report on NTFS and share permissions, without even single line of PowerShell script. Wondering how? Just give ADManager Plus a try.

This integrated AD, Office 365 and Exchange management software offers purpose built-features and predefined reports:

• Assign file server access permissions to users and groups in bulk.
• Modify or remove NTFS/share permissions, of users and groups, on multiple shared folders in a single click.
• Grant temporary access permissions to shares; the permissions are automatically revoked after the specified time.
• Find all available shares on servers.
• List the permissions assigned on file servers and shared folders.
• Identify all shared folders or servers that can be accessed by a specific account.
• And more.

Download the free 30-day trial of ADManager Plus to explore all these features and more, in your environment at your convenience.