Requirements
Your organization’s environment must meet the following requirements.
Note
All requirements apply to Gatekeeper installation, whereas only the Specops Client requirements are relevant for the Entra ID integration.
| Component |
Requirement |
| Gatekeeper server computer |
- Fully patched operating system is required
- Joined to your Active Directory domain
- Windows Server 2016/2019/2022/2025 (core or desktop experience)
- .Net Framework 4.7.2 or later
|
| Gatekeeper Admin Tool |
- Joined to your Active Directory domain
- Windows 10/11 or Windows Server 2016/2019/2022/2025
- .Net Framework 4.7.2 or later
|
| Specops Client |
- Windows 10 x64, Windows 11 x64 or Windows Server 2016/2019/2022
- Secure Access not supported on domain controllers.
- .Net Framework 4.7.2 or later
- For password resets with uReset 8, Secure Access and Specops Password Reset, the Specops Cefsharp runtime MSI should be installed.
- Specops Secure Access requires .Net 8 Desktop Runtime deployed on client computers.
|
| Administrative privileges |
To both Active Directory and the Gatekeeper server computer. It is recommended to run the installation as a domain administrator. |
| Account options |
There are three options for the account the Gatekeeper Windows service will run as. Prepare to use any of the following: - Managed Service Account (recommended): Using a managed service account for the Gatekeeper is easy, without extra actions required for you as an installation administrator. The script will create a managed service account in your Active Directory. If the Gatekeeper server’s sAMAccountName in Active Directory is “SRV17”, the managed service account name will be “SGkSRV17$”.
- Domain Account: If you prefer to use a domain account, it must be created before running the installation. You will need the account’s sAMAccountName and password on hand.
- Group Managed Service Account: A valid service account that the Gatekeeper computer is permitted to use, must first be created.
|
| Security groups |
The installation script will create security groups used by Specops Authentication. There is no action required by you. - Admin Group: Users that are members of this group will be portal administrators. The current user will be automatically added to this group.
- User Admin Group: Users that are members of this group will be able to access the user management features on the Authentication Web. The curr-nt user will be automatically added to this group.
- Gatekeepers Group: Service accounts that are members of this group will have permission to read user information. The account running the Gatekeeper will be added to the Gatekeepers security group.
|
