Log in to the application server hosting the Console as the Carbon Black Service Account.
Update the Windows Services for App Control:
Open Services (Start > Run > services.msc > Ok)
Stop the following services:
App Control Reporter Service
App Control Server Service
For each: Right click > Properties > Log On
Enter the updated credentials and click OK.
Update the Application Pools in IIS: NOTE: If the Identity for the AppPools is set to "ApplicationPoolIdentity" NO change is needed.
Open IIS Manager > expand the server name > select Application Pools:
Note each of the following Application Pools:
DefaultAppPool
AppCDownloads (Server 8.10.2+)
Right click each Application Pool > Advanced Settings > Process Model
Edit the Identity and update the credentials.
Use an administrative command prompt to issue the command:
iisreset
Start the services from Step 4.
Additional Information
If you have an App Control Agent installed, but do not know the Global CLI Password you will need to make the changes to the Services & IIS Identity via Safe Mode.
In some instances the temporary files in "C:\Users\SERVICEACCOUNT\AppData\Local\Temp" will need to be deleted after the password update is complete, and while the services are stopped.