MID server best practices - service accounts

seberly · ‎10-28-2016

What is the best practice for service accounts used by MID servers? I have one account per mid server right now and it gets hairy to manage whenever we want to add or subtract or modify a MID server with the user accounts.

Is this the best practice, or is the best practice just to have one MID server service account that all MID servers use to access all of my environments?

Thanks in advance,

Scott

EDIT: when I mention service accounts, I mean to say the ServiceNow accounts the MID server services use to connect to my SN instances.

doug_schulze · ‎10-28-2016

Scott,

In my experience folks have one or a couple actual service accounts for their environments, it all depends on how things are setup on your end. Having a single system account per midserver would be quite the overkill..

Hope that helps, if Im still not getting the gist of the question Id be glad to give you a call and we can hash it out directly..

View solution in original post

doug_schulze · ‎10-28-2016

Scott,

if its possible you should have your credentials in the credentials table so that all the midservers will have them to load. This way you can bring midservers up and down at will keeping your accounts in a central location..

Is there a drive behind why you have your midservers running as those particular users?

seberly · ‎10-28-2016

Doug, Thanks for the quick reply. I made an edit in my original message that might help you understand my question better. I think leaving that out misconstrued the original question.

doug_schulze · ‎10-28-2016

Scott,

In my experience folks have one or a couple actual service accounts for their environments, it all depends on how things are setup on your end. Having a single system account per midserver would be quite the overkill..

Hope that helps, if Im still not getting the gist of the question Id be glad to give you a call and we can hash it out directly..

seberly · ‎10-28-2016

I believe you've answered my question. Thanks!