I'm trying to get the Security & Compliance Analyzer happy, and it's complaining about:
"Credentials and encryption passwords should be rotated at least annually"
I have rotated normal passwords and encryption keys. What remains are 1 GMSA and the 4 "root" passwords created by Veeam (provider-side network extension, Tenant-side network extension, Azure helper appliance, and Helper applianced creds).
I have other VBR servers passing the Analyzer without changing the 4 passwords, so I have to assume the Analyzer is failing because of the GMSA.
GMSA's are rotated every 30 days already, why does Veeam flagging a GMSA? Is it just a bug?
Bug or not, what's the best way to fix?
"Credentials and encryption passwords should be rotated at least annually"
I have rotated normal passwords and encryption keys. What remains are 1 GMSA and the 4 "root" passwords created by Veeam (provider-side network extension, Tenant-side network extension, Azure helper appliance, and Helper applianced creds).
I have other VBR servers passing the Analyzer without changing the 4 passwords, so I have to assume the Analyzer is failing because of the GMSA.
GMSA's are rotated every 30 days already, why does Veeam flagging a GMSA? Is it just a bug?
Bug or not, what's the best way to fix?
Statistics: Posted by TWuser — Jul 29, 2025 5:45 pm
