Types of Accounts and there Uses

...

The password for this account must follow the Network Password Requirements and cannot be the same as your personal account.  If available, the account and password should must be stored in the University Controlled Password Manager.  

...

Service accounts are accounts that are designated for use for a particular service or application and have elevated privileges.  A service account will be created for each function for a particular service or application, and should only must only be used for that purpose. The account should abide must abide by the rules of least privilege as described by NIST.  These accounts will be created and maintained in the OU Admin in Active Directory and can only be acted on by Domain Admins. In 389 these accounts are to be stored in the OU People or OU Special and can only be acted on by System Administrators.

Service accounts will be created and follow the naming conventions as established in the Privileged Access Standard.  

Password should be must be unique with a minimum length should be must be 20 characters.

If available, the account and password should be must be stored in the approved University Controlled Password Manager.  

...

Departmental accounts will not be granted administrative privileges on any system and should not must not be used to authenticate services or applications to Active Directory or LDAP 389. 

...

Generic accounts will not be granted administrative privileges to any system and should must not be used to authenticate services or applications to Active Directory or LDAP 389. 

...

Event access accounts will not be granted administrative privileges to any system and should must not be used to authenticate services or applications to Active Directory or LDAP 389. 

...

...