Home » SharePoint 2010 » Creating Managed Accounts for SharePoint Server 2010

Creating Managed Accounts for SharePoint Server 2010

Any web applications or service applications running on SharePoint server 2010 require a managed account. The SharePoint server will allocate services to the managed accounts assigned to these processes. SharePoint administrators can save time by creating these accounts and configuring them before they are required.

In a video tutorial titled Configure Managed Accounts, we demonstrate the steps required to create a managed account and configure it for use with SharePoint 2010. This tutorial is intended for an audience of SharePoint administrators. Asif Rehmani, SharePoint MVP and MCT explains why a managed account is required to support these processes. A managed account is ” . . . required to run the application pool for the service application.” (quoted from a video tutorial published on SharePoint-Videos.com. We have provided a link to this tutorial earlier in this post).

A managed account is set up by first visiting “Central Administration”. Administrators should then click on “Security”, where they will find a “Configure Managed Accounts” link. This link can be used to create a configure managed accounts for later use.

Once a managed account has been configured, SharePoint administrators can use it by returning to “Central Administration” and clicking on “Application Management”, where a new web application can be created. Two important settings from the following screen, which will be served, are to specify the “Application Pool” to support the new web application and the “security account” (the “managed account” in this tutorial) which will be assigned to the specified “Application Pool”. The server will use the account, as Asif Rehmani explains, to “authenticate for the application pool”. The form box selection for the “security account” will be populated with any existing managed accounts already configured. An option will be to create a new managed account.

A managed account must be recognizable through active directory. Asif Rehmani demonstrates how to select an already existing active directory account, which will be added as the managed account through the Security screen provided for configuring managed accounts. The password already assigned to the active directory account must be entered in this set of dialog boxes as well.

A useful pointer included in this tutorial shows the viewer how to enable SharePoint to automatically change the password for the managed account in active directory, as well as in SharePoint, without user intervention, to adhere to the password change schedule for other applications. As Asif Rehmani notes, setting up this capability will ” . . . save you a lot of time and frustration . . . ” The administrator has the option of either turning this feature on or not.

Ira Michael Blonder

© Rehmani Consulting, Inc. & Ira Michael Blonder, 2013 All Rights Reserved

Comments are closed.