External Service tasks - user account.

James Mosquito asked on October 12, 2021 12:30

Hi,

When setting tasks to run as an external service we have noticed that the services by default run under the "Network Service" account on the O/S. Is this set during the Kentico installation and should it be left as is, or can the account be changed?

We did have to add folder permissions for some tasks to run properly which lead us to wonder about best practices for services/permissions.

THanks, James

Correct Answer

Dmitry Bastron answered on October 13, 2021 07:20

Hi James,

You're right, this is set by default during the installation. Surely you can change the user for the service to whatever is suitable for your organization, and you are absolutely right, this will require granting folder permissions for this user. Permissions are heavily dependant on what your tasks are going to do however. If the specific task run by this service needs writing to logs - then write permissions will be required. If the task is going to rebuild indexes - access to App_Data folder would be required, and so on.

I'd probably suggest, if you don't have any specific organization policy that prevents you from running services under NETWORK SERVICE account, it's better and much easier to keep it by default.

0 votesVote for this answer Unmark Correct answer

Recent Answers

James Mosquito answered on October 15, 2021 13:08

Hi Dmitry, thanks for your feedback.

0 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.