MFA Guides

Post Installation Procedure for RapidIdentity Service Account

Post Installation Procedure for RapidIdentity Service Account

Reminder

As stated previously in the Core Infrastructure Post-Installation Procedures section of this installation guide, the domain service account procedure can be skipped if the environment is not using PKI or smart cards.

  1. Open Active Directory Users and Computers in the configured domain controller. In this example, the domain controller is MFAServer.local.

  2. In the Managed Service Accounts OU, right-click and select New | User.

    Post_Inst_RI_SA_2.png
  3. Enter the First name as RapidIdentityServer, the Last name as ServiceAccount, and the User logon name as RISSA.

    Post_Inst_RI_SA_3.png

    Click Next.

  4. Enter and confirm a password to comply with the organization’s policy.

    Post_Inst_RI_SA_4.png

    Verify that the only checkbox check is the Password never expires. Click Next and then click Finish.

  5. Right-click the Managed Service Account created in the previous step and select Add to a group.

    Post_Inst_RI_SA_5_1.png

    Type Server Operators and click OK.

    Post_Inst_RI_SA_5_2.png

    A dialog box will open to confirm success. Click OK.

    Post_Inst_RI_SA_5_3.png
  6. Exit Active Directory Users and Computers. Confirm that the RISSA Service Account is able to log on to the MFA Server.

    Post_Inst_RI_SA_6.png

    After a successful authentication, logout and use any desired administrator account to complete the installation.