Service accounts for CCMS components
IXIASOFT recommends creating service accounts to run the services of the IXIASOFT CCMS solution. The accounts must be created in your central directory, such as Active Directory.
- Per environment
You can use one or multiple accounts for each environment, such as Production and Test.
- Per IXIASOFT CCMS component
You can use one or multiple accounts for each component, such as CCMS Output Generator, CCMS Scheduler, CCMS Web Server, or Backup.
- Each service account can be used for two different purposes:
- To run/execute the CCMS component under this credential at the service
level.
This service account needs the appropriate file system permissions to run (such as running component binaries) and write files (such as log files).
This account does not need permission to log in or an interactive desktop. It does need to have permissions to run as service. - To grant access to the docbase.
This service account needs to be in one of the Security groups so that it can access the docbase like a regular user.
This account must be configured so that its password never expires. Otherwise, each time the password expires, you must reconfigure each component with the new password.
- To run/execute the CCMS component under this credential at the service
level.
While you can use a local account, it is not recommended for security considerations and manageability.