Service Account (Dictionary Entry)

Contexts

Cybersecurity, IAM, PAM

Term

Service Account

Alternative Forms

  • Non-human ID

  • Service ID

  • Shared Account (we recommend not to use this term as a synonymous for Service Account)

  • System Account (we recommend not to use this term as a synonymous for Service Account)

Definitions

A digital identity intended to be used by non-human entities to access resources.

Related Terms

  • Service

Quotes

Shared accounts, which are used by enterprise class software to run specific applications, and service accounts (“service IDs,” “nonhuman IDs”) that are used in scripts or application configuration files that communicate across applications and networks, often create significant challenges for organizations. Without adequate standards and guidance, these accounts introduce high risk to the organization. As depicted in Figure 15.4, a service ID (nonhuman ID) is a general term applied to a class of computing system accounts which are often not intended to be used by humans. Service IDs are used by nonhuman entities to access target resources.

(Cowart, 2013, p. 471)

Service accounts are specialized non-human privileged accounts typically used within operating systems to execute applications or other services so they can access data and network resources to perform specific tasks. Service accounts operate with associated privileges (or a defined account created during the installation of an application) that require certain local system privileges to function and/or to connect with other network resources. With this in mind, the operation of service accounts often requires elevated privileges and access to business-critical applications and data.

(Carson, 2020, p. 3)

Bibliography

See Also


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.