Service Account (Dictionary Entry)
Contexts | Cybersecurity, IAM, PAM |
|---|---|
Term | Service Account |
Alternative Forms |
|
Definitions | A digital identity intended to be used by non-human entities to access resources. |
Related Terms |
|
Quotes
Shared accounts, which are used by enterprise class software to run specific applications, and service accounts (“service IDs,” “nonhuman IDs”) that are used in scripts or application configuration files that communicate across applications and networks, often create significant challenges for organizations. Without adequate standards and guidance, these accounts introduce high risk to the organization. As depicted in Figure 15.4, a service ID (nonhuman ID) is a general term applied to a class of computing system accounts which are often not intended to be used by humans. Service IDs are used by nonhuman entities to access target resources.
Service accounts are specialized non-human privileged accounts typically used within operating systems to execute applications or other services so they can access data and network resources to perform specific tasks. Service accounts operate with associated privileges (or a defined account created during the installation of an application) that require certain local system privileges to function and/or to connect with other network resources. With this in mind, the operation of service accounts often requires elevated privileges and access to business-critical applications and data.
Bibliography
See Also
-
Carson, 2020 (Bibliography)
-
OM-BP-0012: Remove unnecessary service accounts (Best Practice) (Best Practices)
-
-
Service Account (Dictionary Entry) (Dictionary)
-
Thycotic, 2019 (Bibliography)
Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.
This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.
