After a quick meeting with client this may be a moot point. On this page: https://tomcat.apache.org/tomcat-8.5-doc/windows-service-howto.html I saw command line references (and as I'm reviewing, it's becoming more clear that I'm not understanding use) for:
-User User account used for running executable. It is used only for StartMode java or exe and enables running applications as service under account without LogonAsService privilege. --Password Password for user account set by --User parameter It looks like this is when you install the service. I was thinking that I would have to specify password somewhere. I don't think that's the case. Sorry to be a little misinformed. -----Original Message----- From: Mark Thomas <ma...@apache.org> Sent: Wednesday, June 22, 2022 10:33 AM To: users@tomcat.apache.org Subject: Re: How to configure Tomcat 8.5.x to run in with a different windows service user, and what are minimum permissions On 22/06/2022 17:02, paul....@stgconsulting.com wrote: > Hello all, > > I been tasked with researching options for running Tomcat 8.5.x as a > windows service, but with a different user. > > I need to know what minimum rights for user would be, and also how to > pass user & password. I think I see how to pass user and password. I > don't see how to encrypt password though. > > Other options would be appreciated as well. Any reason running as the default (assuming a recent Tomcat version) LocalService isn't sufficiently secure? The minimum permissions would depend on the app but off the top of my head that will be at least: - file permissions as documented in the security guide - run as service - network access Exactly where are you looking to encrypt the password? Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
