Create service account for domain use

We have a server running some demo network monitoring software that requires a domain service account. Is there an easy way to create a user account to be used for accessing each machine on the domain? The best way I can think would be to create a normal user account and create a group policy to set <DOMAIN\User acct> under "Deny logon locally" & "Log on as a service" local policies. Security is a concern as this software is being "demo'd" from a new vendor.
LVL 1
ogre351Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
Mike KlineConnect With a Mentor Commented:
I'm not sure about connecting as the system account using that particular application.
I'd email or call  the vendor and ask them what rights you need specifically.  They should be responsive if they want this to go from a demo to a sale :)
0
 
Mike KlineCommented:
Is logon as a service the only rights it needs?
Is there a server associated with this?  In AD for the account you can also specify what machines the account can logon to.  
 
Thanks
Mike
0
 
ogre351Author Commented:
I can't honestly say how much privilege the account needs. Is there any way to designate it to connect to the local "SYSTEM" account?

Sweet recommendation for limiting logon. I forgot about that option. I'm not sure the account needs to logon to anything currently.
0
 
ogre351Author Commented:
I should be able to do as I intended and specify any extra permissions from there. Thanks.
0
All Courses

From novice to tech pro — start learning today.