Hi,
by security measure I don't like to run the ME-services under system account.
What credentials are needed by my 'ME_Services' user to run the services properly ?
greetings
johnny
[Q] HOW NOT TO run ME services under SYSTEM ??????
-
MailEnable
- Site Admin
- Posts: 4441
- Joined: Tue Jun 25, 2002 3:03 am
- Location: Melbourne, Victoria Australia
An an alternative, you can set the IME_ADMIN password using the MEInstaller by reconfiguring webmail or webadmin. Then configure the services to run as the IME_ADMIN user with the nominated password.
Here is why you may not want to do this though - I seem to recall there being some sort of recommendation (somewhere) from MS to run services as local system and elevate priv as required using impersonation/logonuser.
The reason for doing this is that application can control security context and only elevate when needed as opposed to running service with account having elevated rights/perms.
Here is why you may not want to do this though - I seem to recall there being some sort of recommendation (somewhere) from MS to run services as local system and elevate priv as required using impersonation/logonuser.
The reason for doing this is that application can control security context and only elevate when needed as opposed to running service with account having elevated rights/perms.
Regards, Andrew
