For the reconcile accounts for Cyberark PAM, is it best practice to
use non-interactive privileged accounts or it has to be interactive
I thought of using non-interactive as such accounts are not subject
to 90-days password expiry & is better secured. Windows has a
bult-in non-interactive SYSTEM account while UNIX has sys:
are these suitable for use for resetting/recovery?