The issue that we are trying to resolve is taking a standard domain user account and allowing it to login to the machine and run the defined job in espresso / app. In order to do this we have found that editing the Security Policy in Group Policy allows the jobs to run as expected. We have multiple machines and multiple user accounts and we want to dedicate specific accounts to specific machines. They only way I can find is that we create multiple Group Policies and filter those policies to the specific machine and add the user account to the allow logon locally.
Possibly there are some advance options using Registry and File System settings in Group Policy? That's what I can think of right now without having to use multiple Group Policy objects for machines.Thanks,Ken Ski
These are just accounts they are not part of any group.
These accounts like Ken said are just regular accounts. Do these jobs support using GMSA accounts?
Do you have any articles that support this?
Thank you and have a great day!