How to change your ADFS Service Account
How to change your ADFS Service Account We had set up our original ADFS farm with a standard user account as the service account. However, we wanted to change the account to a Group Managed Service Account (GMSA) instead. Unfortunately, there weren't any complete instructions on changing the ADFS account. Export-AdfsAuthenticationProviderConfigurationData Import-AdfsAuthenticationProviderConfigurationData I did manage to find the following great related articles: http://tunnik.name/changing-adfs-service-account/ https://github.com/Microsoft/adfsToolbox/tree/master/serviceAccountModule https://social.technet.microsoft.com/Forums/windowsserver/en-US/8f558762-f92c-4803-916c-cc36ecc7c988/adfs-2016-change-service-account-to-gmsa?forum=ADFS After reading the article from the tunnik.name site, I decided to give the change a shot in my dev environment. Here are the notes I came up with: The error messages shown in the notes are from the [Event Viewer -> Application and Service Logs