Windows Scheduled Task and Windows Service password consumers help you automate password changes for service accounts. Service accounts are internal accounts used by Windows services. For example, if you configure a scheduled task to regularly check for software updates, the scheduled task uses a service account to log in to the endpoint and perform the task.
You can create Windows Scheduled Task and Windows Service password consumers only on Windows Agentless endpoints. You do not need to install CA ControlMinder on the endpoint to use Windows Service and Windows Scheduled Task password consumers.
You can create Windows Service password consumers only for services that are run by accounts for which you can change the password. For example, you can create a password consumer for a service that is run by your computer's Administrator account; you cannot create a password consumer for a service that is run by the NT AUTHORITY\Local Service account.
In the following example, the system administrator Steve wants to create a password consumer for a scheduled task that checks for software updates on a Windows endpoint named win456. The scheduled task uses the win456\ServiceAdmin account to log in to the endpoint.
Steve does the following in CA ControlMinder Enterprise Management:
Steve has created the password consumer. Each time that CA ControlMinder Enterprise Management changes the password for the win456\ServiceAdmin account, the JCS logs in to the win456 endpoint and changes the password of the software update scheduled task. If the password change does not succeed, Steve can use the Synchronize Password Consumers task to retry the password change.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|