[Samba] Future support for ADWS, gMSA, and Windows LAPS in Samba AD
Philippe OTMANI
philippe.otmani at gmail.com
Tue Nov 11 16:34:19 UTC 2025
Hi Ingo,
I know for gMSA with samba 4.21 but it doesn't work it need ADWS without
it the client can't connect to the AD.
Like I what to try Windows LAPS and not Legacy can you give me more
informations please ?
Best regards
Philippe.
Le 10/11/2025 à 19:04, Ingo Asche a écrit :
> Hi Philippe.
>
> I can answer point 2 and 3:
>
> gMSA are supported since Samba 4.21.0
> https://wiki.samba.org/index.php/Samba_4.21_Features_added/changed#Group_Managed_Service_Accounts
>
>
> And LAPS is already working, the old one and the new one.
>
> Exception for the new LAPS is the encryption of passwords in AD. The
> is this:
> https://lists.samba.org/archive/samba/2023-December/247489.html
>
> I got it running with the new one with this done:
> https://lists.samba.org/archive/samba/2023-December/247491.html
>
> Regards
> Ingo
> https://github.com/WAdama
>
>
> Philippe OTMANI via samba schrieb am 10.11.2025 um 17:23:
>> Hello Samba Team,
>>
>> I am currently using Samba AD as a domain controller in a mixed
>> environment and I have a few questions regarding planned features.
>>
>> System details:
>> - Samba version: 4.23.3
>> - OS: Debian 13
>>
>> Questions:
>> 1. ADWS (Active Directory Web Services) – are there plans to
>> implement support for remote management via PowerShell ?
>>
>> 2. gMSA (Group Managed Service Accounts) – will Samba AD support gMSA
>> accounts in the near future?
>>
>> 3. Windows LAPS (Local Administrator Password Solution) – is there
>> any roadmap or intention to support LAPS for local administrator
>> password management?
>>
>> Any guidance or information about ongoing or planned developments
>> regarding these features would be greatly appreciated.
>>
>> Thank you for your time and for the continued development of Samba.
>>
>> Best regards,
>> Philippe OTMANI
>>
>> philippe.otmani at gmail.com
>>
>>
>
>
>
More information about the samba
mailing list