ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

BCAAA service domain user rights assignments.

book

Article ID: 222223

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

A domain user would need to be assigned to run the BCAAA service on the Windows server.

This domain user have certain rights that needs to be assigned in order for IWA authentication to work.

Environment

Release : 6.7.x and 7.x

Component : Authentication

Resolution

In the Local Security Policy of the server on which BCAAA is running, modify the user rights assignment for the BCAAA domain user to have the following rights:

1. Full access to the directory where you installed BCAAA
2. Act as part of the operating system
3. Logon as a service