Would be great to have the possibility to use Group Managed Service Accounts as the impersonation user in Vault. The GUI currently doesn't allow to use an account without password - perhaps this is the only roadblocker?
Goal: still easy administration with higher security by using GMSA