Please ensure Javascript is enabled for purposes of website accessibility
Powered by Zoomin Software. For more details please contactZoomin

AVEVA™ System Platform

TABLE OF CONTENTS

Application Server OS groups and accounts

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
  • Last UpdatedJan 22, 2025
  • 2 minute read

For System Platform 2023 R2 SP1, Application Server creates and uses the following user accounts, service accounts, and user groups.

Name

Category

Description

aaConfigTools

Group

Provides permissions to users to connect to a Galaxy from the IDE.

SpaceraaRuntimeUsers

Group

In systems where NMX communications have been restricted through a Configurator setting, membership in the aaRuntimeUsers group allows the user or account to access the Network Message Exchange (NMX) for communication between nodes. For details about this Configurator setting, see Communications tab.

Performance Monitor Users

Group

Membership in the Performance Monitor Users group allows the Network Account to function without elevated privileges. See Network Account Membership, below, for more information.

PSMS Administrators

Group

Membership in the PSMS Administrators group allows the Network Account to function without elevated privileges. See Network Account Membership, below, for more information.

aaGalaxyOwner

User Account

This user account is the owner (dbo) of all Galaxy databases in your system.

NT SERVICE\ aaPIM

Windows Service Account

This is the platform installation manager. It is responsible for installing platforms. It is added to the Administrators group as a service account.

Network Account membership

The Network Account is used for off-line communications between System Platform nodes. To support Application Server, it may have membership in some or all of the following OS Groups, with the requirements and limitations as described below. Note that membership in some of these groups is dependent on whether or not this is a new installation or an upgrade of an older version of System Platform.

Group Name

SpacerAdministrators

Distributed COM Users

The Network Account will be part of the Distributed COM Users group ONLY if you are upgrading from System Platform 2017 Update 2 or prior release. If only Application Server is installed, you can remove the Network Account from this group.

Performance Monitor Users

This is a new OS Group added for System Platform 2017 Update 3 and later releases. It allows the Network Account to function without elevated privileges. Do not remove this group, and do not remove the Network Account from this group.

PSMS Administrators

This is a new OS Group added for System Platform 2017 Update 3 and later releases. It allows the Network Account to function without elevated privileges. Do not remove this group, and do not remove the Network Account from this group.

TitleResults for “How to create a CRG?”Also Available in