- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-15-2022 01:39 AM
I am trying to find out what permissions the account needs to run the service on the mid server.
We are currently using a service account to run the service but want to move away from this.
Does the account need to be local system or a local admin or a domain admin? I cannot locate any official documentation, so any help would be appreciated.
Thanks
Solved! Go to Solution.
- Labels:
-
MID Server
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-15-2022 02:05 AM
Hi Matt,
You do have to install the MID server as administrator, but you don't necessarily need to run it under a high level service account or even as a local admin.
It depends on what you are going to use the MID server for, and what permissions are needed for the actions that you are using it for specifically.
For example a MID server that simply relays a webservice call onto your internal network might have different access and account requirements than a MID server that is used to discover your entire network environment.
I'd have to try it out, but I think that at minimum if you are running the MID server as a Service, it will need the Log on as a service access, it should be allowed to start the service and have file read/write permissions in the MID server folder structure where you have installed it.
The following links might be useful to get a better picture of this;
- mid-server-install-prereqs (Scroll down to step 8 and review the options for 'Service Account Name'
- File permission enforcement for Windows MID Servers
- Change the MID server log on as user
Hope this helps.
Kind regards,
Fernando
ITSMGroup
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-15-2022 02:05 AM
Hi Matt,
You do have to install the MID server as administrator, but you don't necessarily need to run it under a high level service account or even as a local admin.
It depends on what you are going to use the MID server for, and what permissions are needed for the actions that you are using it for specifically.
For example a MID server that simply relays a webservice call onto your internal network might have different access and account requirements than a MID server that is used to discover your entire network environment.
I'd have to try it out, but I think that at minimum if you are running the MID server as a Service, it will need the Log on as a service access, it should be allowed to start the service and have file read/write permissions in the MID server folder structure where you have installed it.
The following links might be useful to get a better picture of this;
- mid-server-install-prereqs (Scroll down to step 8 and review the options for 'Service Account Name'
- File permission enforcement for Windows MID Servers
- Change the MID server log on as user
Hope this helps.
Kind regards,
Fernando
ITSMGroup
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-15-2022 03:25 AM
Hi, this is described in product documentation:
- The user cannot be a local system or an administrator level account (local admin, domain admin, etc.)
- The service account provided has the log on as service right, which is required for an account to be used as the log on user for a service.
Hope it helps
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎02-15-2022 03:33 AM
Hi, can you assign with 'mid_server' role to the service account and try it.
Please mark as correct answer if helped.
Regards,
Suresh.
Suresh.
