AgilePoint System Account (master administrator account)

The AgilePoint System Account is the priamary administrator account for AgilePoint Server, especially the AgilePoint Server Configuration Utility and the Windows services associated with the AgilePoint server-side components.

By default, the AgilePoint System Account is assumed to use the same credentials as other administrator tasks on the AgilePoint Server machine, such as the Windows administrator account. However, for security purposes, AgilePoint recommends you separate these credentials after AgilePoint Server is installed.

When AgilePoint Server is installed, the credentials for the AgilePoint System Account are the same as the AgilePoint Service Account. The purpose of this is to simplify the AgilePoint Server installation. However, for security purposes, AgilePoint recommends you separate these credentials after AgilePoint Server is installed.

Note: The names and purposes of the AgilePoint System Account and AgilePoint Service Account are similar, and they are often confused, even by AgilePoint employees. If there is a discrepancy about the purposes of these accounts, this document provides the official explanation from AgilePoint.
Figure: AgilePoint Server Configuration > System tab

AgilePoint Server Configuration System tab

Applies to Deployment Types

Permissions and Configuration

SystemPermissionsNotes

AgilePoint Server Machines
  • Local administrator
  • ServiceLogon
  • Member of the following groups:
    • Administrator
    • Performance Monitor Users
    • IIS_IUSRS
  • This user account will also be used to initially sign in to AgilePoint NX.
  • If you are installing AgilePoint Server on a Domain Controller, this cannot be a local administrator account.

AgilePoint Server service instances
  • Create an instance
  • Delete an instance
  • Configure AgilePoint Server
  • Start or stop an instance

AgilePoint NX Portal tenants

How To Create or Change This Account

Good to Know

  • Other system administrator types covered in this section — Tenant Administrator (person), Database Administrator, and Network Administrator — are all human roles in an organization. That is, these are functions that human users serve, rather than administrator accounts, roles, or access controls within AgilePoint NX. All of the credentials for these administrator types are covered on this page. The subsequent pages — Tenant Adminstrator, Database Administrator, and Network Administrator — represent ways that these credentials can be divided among the responsiblities of human administrator users. Thus, there is some duplication of content for these pages. However, subsequent pages also cover some privileges for AgilePoint NX on external systems that these people manage, such as the database and SharePoint.
  • These administrator types have similar names, and they are easy to confuse:
    • The AgilePoint NX System Administrator is a person who is responsible for several administrator accounts and roles. In most cases, there is one primary AgilePoint NX System Administrator, but this is not a technical limitation.
    • Tenant Administrator (capitalized) is a master administrator setting for the NX Portal. There can be only one Tenant Administrator.

      The Tenant Administrator is assigned on the Tenant screen.

    • A tenant administrator (small letters) is a person who is resonsible for one AgilePoint Server tenant. In multi-tenant environments, each tenant can have its own tenant administrator, but this is not a technical limitation.

      The tenant administrator (person) usually has the Tenant Administrator setting, as well as other security roles. However, the privileges are the decision of an organization and not a technical limitation.

    • The AgilePoint System Account is a set of credentials for managing AgilePoint Server. There can be only one AgilePoint System Account. In most cases, one human user is assigned these credentials. The names for the System Account and Service Account, especially, are often confused.
    • The AgilePoint Service Account is a set of credentials AgilePoint Server uses to connect with other systems. There can be only one AgilePoint Service Account. Only the AgilePoint Server software uses these credentials, and they are not assigned to a human user. However, the AgilePoint NX System Administrator is usually responsible for maintaining these credentials. The names for the System Account and Service Account, especially, are often confused.
    • Administrator is a security role on the NX Portal. Any number of users can be assigned the Administrator role.

Related Topics

About This Page

This page is a navigational feature that can help you find the most important information about this topic from one location. It centralizes access to information about the concept that may be found in different parts of the documentation, provides any videos that may be available for this topic, and facilitates search using synonyms or related terms. Use the links on this page to find the information that is the most relevant to your needs.

Keywords

system account, AgilePoint system account, AgilePoint Server administrator, AgilePoint Server admin