![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 12%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
14,503 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 2%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESX%3C/text%3E%3C/svg%3E)
Hi @TS,
It is generally recommended to use a domain account as the service account for the SQL Server Database Engine in an Always On Cluster. Using a domain account provides the following benefits:
Centralized management: Domain accounts can be centrally managed by your organization's IT team, allowing for better control over password policies, authentication, and authorization. What is more, domain accounts can be used across multiple servers and can be easily reassigned to different servers if needed, providing flexibility in managing your SQL Server environment.
Let's talk more about local accounts.
Local accounts are limited to the local server and cannot be centrally managed by the IT team, resulting in increased complexity and difficulty in managing the account. Local accounts may have higher privileges on the local server, which can increase the risk of potential security breaches if the account is compromised. In addition, local accounts are bound to the specific server where they are created and cannot be easily reassigned to other servers.
Best regards,
Seeya
If the answer is the right solution, please click "Accept Answer" and kindly upvote it.