web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

No record found.

News and Announcements icon
Community site session details

Community site session details

Session Id :
Dynamics 365 Community / Forums / Customer experience | Sales, Customer Insights,... / CRM Services account r...
Customer experience | Sales, Customer Insights,...
Suggested Answer

CRM Services account rights

(0) ShareShare
ReportReport
Posted on by Jonathan PP 5

Hello team.

I've an dynamics crm on-premises and i'm using the services accounts under domain admin group in active directory.
Today the security team was asking why these account are under the domain admin group.

There's an official document referring to service accounts rights and if this accounts should be in these group or can be remove from domain admin group?

I don't remember why i added these accounts in domain admin.

It's a productive environment.

Thanks a lot.

I have the same question (0)
  • Suggested answer
    PerezAguiar Profile Picture
    PerezAguiar Microsoft Employee on at

    Hey Jonathan.

    Most of the information can be checked on https://learn.microsoft.com/en-us/dynamics365/customerengagement/on-premises/deploy/security-considerations-for-microsoft-dynamics-365?view=op-9-1.  Not sure why on your particular scenario they were added to "Domain admins", as the recommendation is always "least privilege".  Installation does require that the users are added as local administrators on the machines where you're installing.  However, these points are interesting:

    • Managed service accounts (group-managed service accounts (gMSA) or single-managed service accounts) and virtual accounts (NT SERVICE\,<SERVICENAME>) aren't supported for running Dynamics 365 for Customer Engagement services.
    • Have organizational unit and security group creation and add membership permission to those groups in Active Directory. Alternatively, you can use a Setup XML configuration file to install Dynamics 365 Server when security groups have already been created.

    Best regards

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Stars!

Congratulations to our 2025 Community Spotlights

Thanks to all of our 2025 Community Spotlight stars!

Congratulations to the January Top 10 Community Leaders

These are the community rock stars!

Leaderboard > Customer experience | Sales, Customer Insights, CRM

#1
ManoVerse Profile Picture

ManoVerse 109 Super User 2026 Season 1

#2
Jimmy Passeti Profile Picture

Jimmy Passeti 46 Most Valuable Professional

#3
NeerajPawar Profile Picture

NeerajPawar 39

Last 30 days Overall leaderboard

Featured topics

Hide selecting Contact for potential customer when creating quote

Product updates

Dynamics 365 release plans