Service accounts on windows
The following sections explain how Bravura Security Fabric can manage service accounts on Windows systems.
Terminology
The following terminology is introduced in this chapter:
Service accounts | A managed account that has at least one subscriber. The service account provides a security context for a subscriber to authenticate against. |
Subscriber | A subscriber is an entity that stores passwords or permissions used to authenticate to a primary security database, such as a local Windows SAM database or Active Directory. It can be a process, program, or file, such as Service Control Manager, IIS, scheduler or DCOM objects. |
Orchestration | Orchestration is the coordinated process involving one service account password change and related subscriber notifications. Subscriber notification can inform subscribers of a new password value for a service account that they use. Notification may require extra steps, in addition to providing the new password value, such as stopping and restarting services. |
Product administrators can manage subscribers and configure subscriber notifications.