What is the best setting of the “Run as” option in a server package ?
When you deploy COM objects in dlls no security issues arise since dlls run in the process of the caller. On the contrary, when you deploy your COM objects into an .EXE, you have to deal with such issues. (D)COM needs to know under what security principal (read identity) the process, where your COM objects lives in, has to be associated with. (D)COM wants to know other details as well, like who has the rights to launch and to access the COM objects and what’s the lowest level of security your COM objects must accept when it negotiates a connection from a caller. These options can be set at run-time (but you have to deal with DCOM APIs) or can be configured at deployment time using the Dcomfig utility. If there are no security settings defined for your Component then (D)COM uses default access permission. The settings you have available in (D)COM for the Run as setting are: – As interactive user: The process run under the identity of the user currently logged in the system. This setting
