A service account - should it be a member of domain admins or not?
Hi guys hope you are all well and can assist.
We are currently going through the process of reevaluating our Active Directory Security model.
What Id like some help with from you kind people is the following:
When you guys implement a new technology, and someone requests that a service account be created, what do you guys suggest in determining whether it should be:
1) a member of the domain admins group, or
2) just a member of the local admins group on each and every server?
Do you guys automatically add this service account to be a member of domain admins?
Or
If not, how do you add this new account to be a member of every local admins group on every server?
Any help greatly appreciated.
We are currently going through the process of reevaluating our Active Directory Security model.
What Id like some help with from you kind people is the following:
When you guys implement a new technology, and someone requests that a service account be created, what do you guys suggest in determining whether it should be:
1) a member of the domain admins group, or
2) just a member of the local admins group on each and every server?
Do you guys automatically add this service account to be a member of domain admins?
Or
If not, how do you add this new account to be a member of every local admins group on every server?
Any help greatly appreciated.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER