We would like to create an account that can be used as the "identity" for a DCOM component (using the "this user" choice in DCOMCNFG. The twist is, we don't want someone to be able to log into that account directly. In other words, we want the account only to be usable as the security context for the component.

Is there an account setting or policy that prevents an account from being logged into on the network, which still providing what we would need for this situation?

Thanks,

-- Randy