Service Account (or Application Accounts) are a Digital Identity that is used by an application or services to interact with the other Applications or the Operating System.

Service Account have domain administrative privileges depending on the requirements of the application they are being used for. Local service accounts can interact with a variety of Operating System components which makes coordinating password changes difficult. This challenge usually means the passwords are rarely changed – representing a significant risk across an Organizational Entity.

Service Account used by applications to access databases, run batch jobs or scripts, or provide access to other applications. These Privileged Accounts usually have broad access to underlying company data Stores that resides in applications and databases. Passwords for these accounts are often embedded and stored in unencrypted text files, a vulnerability that is replicated across multiple servers to provide greater fault tolerance for applications. This vulnerability represents a significant risk to an organizational Entity because the applications often host the exact data that Advanced Persistent Threats consider as an Item of Interest.

More Information#

There might be more information for this subject on one of the following:

Add new attachment

Only authorized users are allowed to upload new attachments.
« This page (revision-7) was last changed on 20-Jun-2017 09:00 by jim