Use a Least Privileged Account to Run Your WCF Service
- J.D. Meier, Carlos Farre, Jason Taylor,
Prashant Bansode, Steve Gregersen, Madhu Sundararajan, Rob Boucher
Use a least privileged account to host your WCF service. A least privileged account will reduce your application’s attack surface and reduce the potential damage if you are attacked. If the service account requires additional access rights on the infrastructure
resources such as MSMQ, Event Log, Performance Counters and the File System, then appropriate permissions should be given to these resources so that the WCF service can run successfully. If your service needs to access specific resources on behalf of the original
caller, use impersonation and delegation to flow the caller’s identity for a downstream authorization check.
In a Development Scenario, use the local network service account which is a special built-in account that has reduced privileges. In a Production Scenario, create a least privileged custom domain service account.