Microsoft Dynamics CRM uses several security groups in Active Directory.
|Security Group||Account used for|
Some of the service names shown during CRM Setup are used in more than one place as shown in the following table.
|Service Name shown during Setup||Where used|
|Asynchronous Processing Service||
|Deployment Web Service||
|Sandbox Processing Service See Note 2||
|VSS Writer Service||
- Early versions of the Implementation Guide show the SQL Server Service account as belonging to the SQLAccessGroup. My experience is that the SQL Server Service account is added to the PrivUserGroup.
- The Sandbox Processing Service is not added to any of the CRM security groups.
- For the NetworkService or LocalSystem accounts, specify the computer account.