What is the best practice for SQL Server service(MSSQLServer, SQLServerAgent) in domain environment
Hi , What is the best practice for SQL Server service(MSSQLServer, SQLServerAgent) in domain environment to run under 1- Virtual Account [NT Service\Servicesname] 2- [Domain User account] and also for this user what is the best privilege it should have :- - Just be member of Domain Users Group ***or*** other group on domain Server. - do we need to put this [Domain User account] member of Administrator group on server that host SQL Server Best. SQL Server 2012 & Windows server 2012
domain accounts are the best practice, if your AD catalog supports MSAs then these are viable although not recommended for clustered environments. At the end of the day, domain user accounts provide security and network access for the service it is running under.