I have a scenario for one of my admin groups which I am not able to resolve for them. They have multiple AD Resources which utilize an identical resource account name and password. This resource account is at the application level, not an AD level account.

 

Thus, do I need to create a duplicative entry for one resource account on each resource and manually update per resource. OR do I need to create a generalized resource which would be referenced as a duplicative resource account name.

I see problems with either solution. Do you have a third alternative?

 

The issue is in the maintenance and control. It would be easier if the password was static or if an AD account, but our SOPs require password change every 90 days and as stated, this access is at application level not AD. So I am looking to an ease of unified managment for the Resource account and password.

 

Any hints or suggestions appreciated.