Issue: How do you create the AD certificates MSMQ requires of an AD account, which are auto-created per computer in AD upon first login, without actually logging on as said account?
Background:
We are using WCF + MSMQ for a project. The "MSMQ client" is actually a zero-interaction windows service, processing data and sending it to the queue. In our production (and thus test/etc) environments, this windows service runs as a service account.
- This service account IS in AD
- This service account does NOT have permission to log in interactively, and WILL NEVER be given that permission
- Setting security to "off" as per wcf msmq service activation fails is not an option, as this is a secure environment
