I have a sql server that was set up by someone else to run on a local/system account. I am changing that to run on a domain account. Both sql server and agent will use the same account. What I want to know is, what security should this account have on the domain(ie, should it be a member of the local admin group on the actual server) and what sql security should it have(should it have any type of sql server role, like sysadmin).
I've read a few articles and now I'm confused..