Types of Accounts and there Uses
...
Service accounts are accounts that are designated for use for a particular service or application. A service account will be created for each function for a particular service or application, and must only be used for that purpose. The account must abide by the rules of least privilege as described by NIST. These accounts will be created and maintained in the Generic OU in Active Directory and can only be acted on by Identity and Access Management. In 389 these accounts are to be stored in the OU People can only be acted on by ITS personalpersonnel.
Service accounts will be created and follow the naming conventions as established in the Privileged Access Standard.
...
| Type of Account | Used to gain Privileged Access | Password Storage | Password | Used to authenticate a service or application for Directory Services |
|---|---|---|---|---|
| Netid Account | No | User's discretion to keep the password private and secure | Personal | No |
| Administrative Account | Yes | Enterprise Password Management solution | Personal | No |
| Vendor Account | No | User's discretion to keep the password private and secure | Personal | No |
| Privileged Vendor Account | Yes | Enterprise Password Management solution | Personal | No |
| Service Account | Yes | Enterprise Password Management solution | non-Personal | Yes |
| Departmental Account | No | User's discretion to keep the password private and secure | non-Personal | No |
| Generic Account | No | User's discretion to keep the password private and secure | Personal | No |
| Event Access Account | No | User's discretion to keep the password private and secure | non-Personal | No |
...