I have a few questions regarding ACS Express' binding user for Active Directory integration:
1. Does the user have to be a service account in Active Directory?
2. Let's say the AD administrator pre-created the computer account manually, does the binding user still need admin rights?
3. Once the ACS Express successfully joined the domain, can we convert the binding user to a normal user (non-admin)?
I tried searching for a more detailed explanation on this, but couldn't find any. Any help will be appreciated.