
Install Applications Manager:
Proceed with the installation until the DB Configuration page.
Provide the Host, Port, DB Name, and gMSA User name with the Domain name (e.g., apmsql\gmsauser$). Leave the Password field empty.
Ensure that the gMSA User name ends with the $ character.
Download and Extract PSTools:
Download PSTools from Microsoft's website.
Extract the tools to the <APM_HOME> directory. PSTools are used to check the SQL connectivity with the gMSA account during the installation.
Check Connectivity with PSTools:
Now proceed with the installation window.
If the installation fails at the DB Configuration step, open a command prompt and navigate to the <APM_HOME> directory.
Run the following command:
In the newly opened PowerShell window, run:
Invoke-Sqlcmd -ServerInstance 'sql-kerb-1' -Database 'master' -Query 'select getdate()'
Replace sqlkerberos with your domain name, svc_sql$ with your gMSA account name, and sql-kerb-1 with your SQL Server's hostname in the above commands.
PowerShell Errors Related to the Invoke-Sqlcmd Module:
If you encounter the error:

Install the SqlServer module by running the below command in PowerShell:
Install-Module -Name SqlServer
Install the SQL Server module by running the command below in PowerShell:
Import-Module -Name SqlServerImport the module into your PowerShell session:
Import-Module SqlServer
Verify the availability of the Invoke-Sqlcmd cmdlet using the below command in PowerShell:
Get-Command Invoke-Sqlcmd
Continue Installation:
Now check with the installation.
If it is successful, proceed to the final installation window where the "Launch Applications Manager service now" option is disabled. Click finish to complete the installation.
Service Configuration:
Go to Services > Applications Manager Service > Properties > Log On.
Choose the gMSA account and leave the password field empty.
Click Apply and OK, then start the service. Wait for 5 minutes for the complete startup of Applications Manager.
Here you go! You have successfully authenticated the gMSA account with the SQL Server in Applications Manager. You can now skip the following steps and proceed with monitoring.
Alternative Approach (Without PSTools):
Complete the installation using a normal Windows login.
On the final installation window, uncheck the option to "Launch Applications Manager service now" and finish the installation.
Update Configuration:
Open database_params.conf file and modify the JDBC URL parameters:
Set authenticationScheme to NativeAuthentication.
Set IntegratedSecurity to true.
Add/update the domain name.
Add/update the user name to the gMSA user name (e.g., svc_sql$).
Service Configuration:
Go to Services > Applications Manager Service > Properties > Log On.
Choose the gMSA account and leave the password field empty.
Click Apply and OK, then start the service. Wait for 5 minutes for the complete startup of Applications Manager.
Here you go! You have successfully authenticated the gMSA account with the SQL Server in Applications Manager.
Cleanup:
Remove PSTools from the <APM_HOME> directory.
Note: The gMSA account must have sufficient permissions to carry out database operations. Refer here for the minimum permissions required.Stop the Applications Manager service.
Update Configuration:
Open database_params.conf file and modify the JDBC URL parameters:
Set authenticationScheme to NativeAuthentication.
Set IntegratedSecurity to true.
Add/update the domain name.
Add/update the user name to the gMSA user name (e.g., svc_sql$).
Service Configuration:
Go to Services > Applications Manager Service > Properties > Log On.
Choose the gMSA account and leave the password field empty.
Click Apply and OK, then start the service. Ensure the service starts without any issues.
Wait for 5 minutes for the complete startup of Applications Manager.
Here you go! You have successfully authenticated the gMSA account with the SQL Server in Applications Manager.
Once the Applications Manager service is configured to run using a gMSA account as the Log On account, the same gMSA account can be used for SQL Server monitoring. While adding or editing a SQL monitor, select "Native Authentication" as the Authentication Type. Refer to the screenshot below.
Note: The gMSA account must have sufficient permissions to be used for SQL Server monitoring. Refer here for the minimum permissions required.