We observed that, there are five .exe processes getting installed after installing oneagent on windows host. Out of which one "oneagentplugin.exe" showing running with user "dtuser" and other are running with "SYSTEM" user.
Now our Security Team is questioning us, what is "dtuser" user and why its password set to never expire.
Can someone elaborate on this?
Solved! Go to Solution.
duser is user created during agent installation. The same is for other OS'es and processes like Dynatrace Server, or ActiveGate. This is because agent should not work on admin/root user. It has it's own on privviliges that it needs. Password never expires because agent does not have option to adapt to credential changes. This uses is only for agent process handling purposes.
@sebastian k. Many sites' security policies forbid local accounts. What is the recommendation for these cases?
Here is answer for that case:
There is option during agent installation described in docs but in such case you will not able to use OneAgent plugins. Those implemented by default in DT as well.