Creating a SharePoint Impersonator User Account

To create the domain-qualified user account that SharePoint will use to interact with AgilePoint Server at runtime, do the following.

Prerequisites

These instructions apply only if you plan to install SharePoint Integration. This is an optional component that is not available for all versions of AgilePoint BPMS.

Create a domain-qualified SharePoint Impersonator User Account in SharePoint.
Assign the SharePoint Impersonator User Account the following minimal privileges:
- The SharePoint Impersonator account as configured in the SharePoint Configuration List must at least have Contribute rights on each SharePoint site where Lists, Document Libraries or Form Libraries are associated to an AgilePoint Process. Usually, it's enough to add that SharePoint Impersonator account to the [Site Collection Name] Members SharePoint Group, but you must:
- Make sure that group has Contribute rights on SharePoint.
- Make sure inheritance is not broken on sub-sites as that might prevent that Impersonator account to access those sub-sites – it would have to be added to the Members role of each of those sub-sites that break inheritance with their parent site.
  To alleviate these two issues, adding the SharePoint Impersonator account to the Site Collection Administrators group is another option (but does not follow the least-privileged account best practice).