Skip to main content

Authorize Service Accounts

The Authorize Service Accounts page allows administrators to view, authorize, and manage service accounts within your environment. This functionality is critical for ensuring that only appropriate service identities have access to systems in compliance with NIST 800-171 and CMMC requirements.

This page provides a centralized interface to:

  • View existing service accounts and their current authorization state.
  • Authorize or unauthorize service accounts as needed.
  • Track the identity and activity history of authorizations.
  • Leave and view contextual notes explaining the purpose of each service account.

Table Columns:

  • User - Display name or alias of the service account.
  • Identity - Full identity (e.g., email) associated with the service account.
  • Category - Category or usage context for the service account (e.g., finance, NPE).
  • Last Authentication - Timestamp of the most recent successful authentication.
  • State - Indicates whether the account is currently authorized or not.
  • Updated By - Shows who last changed the authorization state and when.
  • Actions - Buttons to authorize or unauthorize the service account.
  • Notes - A field for entering or viewing notes describing the account’s purpose.

Authorizing service accounts

  • Always leave a descriptive note when authorizing a service account to support ongoing compliance audits.
  • Regularly review accounts with no authentication activity to identify unused or stale accounts.
  • Unauthorize accounts that are no longer needed or have not been used recently.
  • Use the filter and export options to support periodic access reviews.
  • A warning icon (⚠️) will appear in the Notes column if a service account has been authorized without a note. This serves as a prompt to review and add explanatory context to ensure proper documentation.