Currently all our jobs' user ids (login.window) are local admins on the Agent(Administrators group). We're trying to pare down the permissions to avoid using this approach. I was looking for the basic login permissions required by UC4 to accomplish this, knowing we will need to expand on it for jobs that call SSIS , file deletion etc...
With testing, I have an AD user acct with the key items: "access to this computer from the network", "RDP/terminal service", "logon as batch job" In the Local Security Policy. Have R/E on the agent's "bin" and "temp" directories. I'm not well versed with server security and just have 1.5+ years experience with UC4.
Was able to RDP into the server via desktop without issue. Receive this message when running a UC4 job which just echoes a UC4 variable. "U2001008 User 'xxxx\xxxxx' has not been granted the required login type."