Changing RPC Service to use "NT Authority\Network Service" account
Posted on 2007-08-08
While troubleshooting a Windows 2003 Server (R2) domain controller issue, part of the solution was to change the "Log on" for the RPC service from "NT Authority\Network Service" account to the "Local System" account. This allowed me to get all the services running again and make all the necessary changes to allow the DC to function properly. The problem appeared after applying the KB935966 RPC patch and rebooting the domain controller, so I've backed out the patch.
Does anyone know of a way to switch the "Log on" for the RPC service back to "NT Authority\Network Service" account? When I go into the service properties now, the ability to change the "Log on" is completely grayed out.
I've search Google and pages of stuff here, but haven't found a reference to this particular problem. How critical is making this change back to the "Network Service" account? Microsoft obviously thought it was better for security, so I'd like to make sure this is configured properly before attempting to re-apply the patch.