Hi
I am being told my my Active Directory guy that we cannot just install SEP (and the SEPM) and have it run as SYSTEM or Domain Admin - They are telling me that we must use a service account. Which is fair enough, from a security stand point, I fully appreciate where they are coming from.
The problem is that I can find very little in relation to SEP and service accounts. Everything in the manuals and forums suggest that the services must run as SYSTEM and that you must use a Domain Admin account to install the software and use features such as remote push. As stated above, numerous people in my orgainsation (including me if I'm honest) aren't happy with that.
Is this correct? Can we not use service accounts?
Is there a best practice document or something that describes what accounts you must use.
Thanks in advance
D.