K2 BLACKPEARL PRODUCT DOCUMENTATION: USER GUIDE
Introduction

Introduction: Run As

The feature to enables the K2 Developer or K2 Administrator to change the credentials a Single Server event will run under. The Run  a service under a different set of credentials other than the logged on service is not a new concept. This feature has been available in operating systems as far back as Windows XP and is used as a Administrator's tool to prevent unauthorized use of Services.

K2 has been enhanced to enable the Administrator or K2 Developer to specify an alternative set of user credentials where under normal circumstances the K2 Service Account would be used. The enhancement is reflected in the K2 Designer, K2 Workspace and the K2 Process Portal which will allow the Administrator or Developer to specify the alternative set of credentials.

When and why use Run As ?

The Run As feature does not in any way undermine the security of the K2 Server. Any set of credentials specified would still need to have the correct permission where they are being applied. The Run As only applies to events where under normal circumstances there would not be user interaction and the K2 Service Account would be used. Since this feature only applies to Server Events, the end user or destination user would never be prompted or be able to use the Run As feature.

Recommendation: When the K2 Server is run in console mode make sure to be logged in as the correct user and make use of the “Run as Administrator” option to ensure that the correct elevated privileges are utilized.

 

 


K2 blackpearl Help 4.6.11 (4.12060.1731.0)