I'm running Zabbix Agent 6.0.28 on a Windows DC server, and I'm using a group managed service account (GMSA) as the "Log On As" account for the service.
In this setup I'm getting 255 (service not running) for Active Directory Domain Services (NTDS) , but I do get correct values for other services, like KDC for example.
Changing the Zabbix Agent Service to run as Local System solves this issue.
Running the query manually as Administrator also gives the correct value:
.\zabbix_agent2.exe -c .\zabbix_agent2.conf -t service.info[NTDS]
service.info[NTDS] [s|0]
I suspect this could be some permission related issue, however I can find no indication of a denied permission.
The GMSA account is associated with the server (otherwise the Zabbix Agent service couldn't even start with it)
In this setup I'm getting 255 (service not running) for Active Directory Domain Services (NTDS) , but I do get correct values for other services, like KDC for example.
Changing the Zabbix Agent Service to run as Local System solves this issue.
Running the query manually as Administrator also gives the correct value:
.\zabbix_agent2.exe -c .\zabbix_agent2.conf -t service.info[NTDS]
service.info[NTDS] [s|0]
I suspect this could be some permission related issue, however I can find no indication of a denied permission.
The GMSA account is associated with the server (otherwise the Zabbix Agent service couldn't even start with it)
Comment