Several of us have a local administrator user account with the same username and password because the code includes ASP.NET impersonation and this setup enables it to work.
I'm not an expert on IIS or impersonation but I can see that it's not ideal for us all to have this local administrator on our systems. The IIS app pool identity for the application is the aforementioned user account.
Here's what I've tried:
What I want to know is can I disable login for the user account without causing impersonation to fail?
Thanks to the answer from Warren P, I was able to get what I was looking for by searching for "remove the Log on Locally User Privilege".
To regulate the security settings, I found the relevant MS documentation and followed these steps:
It ain't no fun getting caught out by easy to fix security issues.