When you move from standard security to advanced security many of the accounts that were initially created by the SMS setup process will remain on your site system(s) because your clients or other sites may need them.
There are several accounts that you can safely remove if you are sure that they are no longer required.
Note: The accounts that follow are deemed no longer necessary when you have no more legacy clients on your site(s). If you still maintain legacy clients the accounts should not be deleted.
Accounts that can be safely deleted:
CCM Boot Loader (DC)
SMS#_dc
CCM Boot Loader (Non-DC)
SMSCCMBootAcct&
Client Connection
SMSClient_ XXX, (Where XXX is your three letter site code)
Client Services (DC)
SMS&_dc
Client Services (Non-DC)
SMSCliSvcAcct&
Client User Token (DC)
SMSCliToknAcct&
Client User Token (Non-DC)
SMSCliToknLocalAcct&
Internal Client Group
SMSInternalCliGrp
Legacy Client Software Installation
SMS Service account
Note: You can also disable the accounts listed above rather than delete them. Then after a sufficient amount of time has passed and your site(s) are functioning as expected you can then delete them.
No Comments