BEX 2012 SLA Account Scope
I have a previous answered post but still need to address the process of migrating to the new service account (hopefully domain admin) from the old default, SLA, BES and Owner, domain admin account. (Prev Post: If I understand the various BEX support articles, I will need to add this new account using Logon Account Management, set it as the default user, then change the ownership to itself, and then set it as the SLA for the BE services, restart and viola. Is this the most prudent order and procedure?)
I could also use some clarification about BEX account roles. We are migrating to an Enterprise Domain and thus I'm loosing my default, SLA, BES, owner, domain admin service account, and thus the need for the above request to add a new account. Enterprise Security will create a domain admin service account, but will want to manage the account instead of me. They would need to access the BEX server remotely and create the new acocunt (without giving me the login password) and configure BEX with my guidance.
To prepare for this, I'd like to know what “installation and setup”steps they will need to perform which would require the new account login creds of the new service account, eg. during the initial creation and migration to the new service account (i'm taking into considering that the password will need to be manually set within BEX and be the same as the non-changing domain password for the account)?
Does “setup” also mean creating/modifying or creating new or existing backup jobs? How about restore processes?
Basically, I’d like to know if I would be able to use BEX as I do now, without having to log into the BEX server with, or knowing the login credentials of the new (default, SLA, BES, owner) domain admin service account, after migrating to this new account within BEX.
Is it a workable scenario where I could use my OU service account account as a "secondary" BEX account to be the account I access BEX to run, modify, create new backup jobs and restore jobs as well as those that were created using the old default, SLA, BES, owner, domain admin service account?
Again, tnx in advance!!
If you have an admin account you can log onto the server and then open up BE. THere are no role-based authorizations within BE. It's been asked for...for years, but hasn't ben addressed.
So 1 account essentially to get onto the server and run the services, but an Admin (local or domain) that can get onto the box can essentially access the software.
Thanks!