EmpowerID utilizes multiple Windows Services to host job functions as well as WCF web services. The EmpowerID services each require a user identity with the necessary privileges to perform their designated tasks. We recommend the creation of a custom database role named "EmpowerIDService" that you can use to give the service account user the minimum database rights needed for each service. To access the EmpowerID database, the following rights are required by all Windows Services and can be granted directly to the service account user or by a custom SQL Role having these rights:
Required Windows Service Rights |
---|
Connect |
Authenticate |
Execute |
Delete |
Insert |
Select |
Update |
Alter — Needed on the following tables only to allow for truncation:
|