How the the service account configuration should be? Do we need to add the service account in administrators groups?
I think it should be only domain users with no password expiry and add it to ACT AS PART OF THE OPERATING SYSTEM in group policy. Let me know if there is any suggestion.
Only in an extreme case would I set a service account as an admin anywhere other than a local PC and be sure there is a policy to change that password often.
Any other account just set to never expire, generate a long cryptic password and document it and let it run.