(imported topic written by mistervernon91)
Is it necessary that the BigFix Admin/service account be a member of the Active Directory Domain Admin group if we plan on using a local software distribution tool (e.g. Altiris) to install the agent to our workstations? (e.g… what is the least privileged Active Directory user login that the BigFix Admin can be)
I do understand that it is essential that the BigFix Admin/service account have local Admin privileges on the BF server box; and have the DBOwner role on the (remote) database instance.
Thanks.