The file \PAM_Install_Dir\server\c2o\wrappers\c2ojagtw.exe has bee flagged as using application account in an interactive way.
This executable is using Windows functions to run a process on Windows.
The LogonUser function is used to perform a user logon operation with the LogonType as 'LOGON32_LOGON_INTERACTIVE'.
This logon type is intended for users who will be interactively using the machine.
Release : 4.3
Component : Process Automation
This behavior is by design - the given user account will be used interactively. This is the account that starts the orchestrator service.
If this behavior is not allowed for this account, the account needs to be changed to one that is allowed to do this.