SharePoint farms are similar to remote managed hosts in that they require a service account with sufficient permissions to access the data, even though they are installed locally. The service account for the agent managing SharePoint farms, must meet the following minimum permissions:
- Must be the SharePoint farm account (same account that is used to run the SharePoint timer service and the One Identity Manager service (job server)).
- Must be a member of the administrators group on the SharePoint server.
- Log On as a Service local user rights on the agent computer. (This is automatically granted when the agent is deployed.)
