How to enable Managed Service Accounts (MSA) Active Directory object

Check Active Directory schema version

Open PowerShell as Administrator
Run the following command

Get-ADObject (Get-ADRootDSE).schemaNamingContext -Property objectVersion

If the objectVersion value is lower than 47, which corresponds to an AD Schema version of Windows Server 2008 R2, you will need to extend the Active Directory schema to be able to use Managed Service Accounts.

Quick-start guides

Elevated computer access

Elevated Entra ID access

LAPS

Multi-tenant MSP portal

Desktop client

Passwordless MFA

Cloud directory

Cloud RADIUS

Cloud LDAP

RFID Single Sign-On

Single Sign-On

Security

Downloads

Support

Knowledgebase

Legal

How to enable Managed Service Accounts (MSA) Active Directory object

Check Active Directory schema version

On this page