Service Accounts In Installing SEP 12
I have been integrated into Symantec through implementing Altiris (Endpoint Management). Utilizing best practice, I know that the service account has administrator rights, not only to the NS (Altiris server), but administrator rights to all the nodes the Altiris Agent is going to be installed on. Utilizing Microsoft SQL, the account for the DB has to have DBO rights. It has always been suggested that the Altiris Service Account and the DBO account for SQL be the same account to make the installation a bit easier.
I'm now getting doctrinated into Endpoint Protection. Understanding best practice, the SQL account is a DBO, and the SEP Service Account has administrator rights to the SEPM server and all nodes receiving the SEP clients. Is it also recommended that the two accounts, SQL and SEP service, be the same to make the installation, again, "easier'??? I, remember working with a SEP consultant on a different project a while back, and he suggested that when installing SEPM that the account used be the same DBO account.
Recommendations? Suggestions? Solution.