This document discusses various account requirements for SharePoint 2010 including:
- SQL Server account to run SQL Server
- Setup account for installation and initial configuration
- Farm account for configuring and managing the farm and services
- Various application pool and service accounts
It also covers disabling CRL checks, Kerberos authentication configuration, and trimming the audit log.
28. Dataset Characteristics Value
SharePointcomponents 30k
Unique users 117k
Unique queries 68k
Unique assets 500k
Reporting DB data size? 200 GB day -> 73 TB year -> 511 TB
for 7 years
Capacity requirements for the Web Analytics Shared Service in SharePoint Server 2010
42. Account Purpose Requirements
SQL Server Runs SQL Server • Domain user account
• No rights in SharePoint
Setup Account Installs the bits and performs initial
configuration
• Domain user account
• Member of Local Admins on each server
in the farm
• securityadmin and dbcreator on SQL
instance
Farm Account Used for configuring andmanaging
the farm and runs primaryservices
(e.g. SPTimerV4)
• Domain account
• Additional rights are automatically
granted as part of installation (both
server and SQL)
43. Account Purpose Requirements
MySites Application
Pool
Worker process identity for MySites • Domain user account
• Managed account
Content Application
Pool
Worker process identity for Content web
applications
• Domain user account
• Managed account
Services Application
Pool
Worker process identity for Service
Application Pools
• Domain account
• Managed account
Search Service Process Process identity for SharePoint Foundation
(Help) search service and SharePoint
Search service
• Domain account
• Managed account
Search Service Default
Content Access
Used to crawl content specified in content
sources
• Domain account
User Profile Import
Account
Account used to import (and optionally
export) user data from an identity store
• Domain account
• Replicate Directory Changes in AD
44. Account Purpose Requirements
Object Cache Super
User
Processes items in the object cache of
a web application
• Domain user account
• Managedaccount
• Full Control User Policy on target web
application(s)
Object Cache Super
Reader
Processes items in the object cache of
a web application
• Domain user account
• Managedaccount
• Full Read User Policy on target web
application(s)