If SiPass integrated service user account is already available, use that to configure the SiPass integrated Sync Agent, else create a new user account.
Before you begin installing SiPass integrated Sync Agent, you need to configure the following user account which are used as a SiPass integrated service user account to any one of the groups that is mentioned in Allow log on locally policy like Guest, Administrators, Users, Backup Operators.
- Domain User - Domainname\DomainUserAccountIdentifier
- Local user - LocalUserAccountIdentifier
Domain User or Local User environment configuration is required only for installation purpose. After the installation is complete, this configuration can be removed.
Creating Local Users and Groups (Local)
- You have the Administrator privileges to create a user account and access local security setting window.
- Click Start > Control Panel > Administrative Tools > Computer Management.
- Expand System Tools and select Local Users and Groups > Users.
- In Run command, type lusrmgr.msc and press Enter key.
- The Local Users and Groups (Local) window opens.
- Select a New User using one of the following options:
- Right click the Users folder.
- Move to extreme right of the window and click on More Actions.
- Enter the following information in the New User window:
- Username: Username for installing SiPass integrated Sync Agent. For example, SiPass integrated Sync Agent.
- Full name: Full name, if required.
- Description: Description, if required.
- Password: Password for installing SiPass integrated Sync Agent. For more information, see: SiPass integrated Sync Agent - Cybersecurity Guidelines, Section Password Policy.
- Confirm Password: Reconfirm the entered password.
- If you want to change the password during next login to SiPass integrated Sync Agent, select the Users must change password on next logon checkbox.
- Click Create and Close.
- The newly created user is listed and available under User’s folder.
Setting the Local Security Policy
- In the Run command, type secpol.msc to verify the Users folder.
- The Local Security Policy console window opens.
- Under Security Settings, expand Local Policies.
- Select and click Users Rights Assignment.
- In the right pane, search the policy Allow log on locally.
- Verify the groups mapped for Allow log on locally security setting. For example, the groups mapped here are Guest, Administrators, Users, Backup Operators.
It is recommended to add the domain user or local user under the Administrators or Users Group.
Unavailability of domain user account or local user account, under any of the Groups defined under the Local User and Groups management console, shall cause incomplete installation of few services.