Acronis Managed Machine Service user should be assigned these privileges:

1. Included in the Backup Operators and Administrators groups. On a Domain Controller, the user must be included in the group Domain Admins.
2. Granted the Full Control permission on the folder %PROGRAMDATA%\Acronis (in Windows XP and Server 2003, %ALLUSERSPROFILE%\Application Data\Acronis) and on its subfolders.
3. Assigned these user rights:
   • Log on as a service
   • Adjust memory quotas for a process
   • Replace a process level token
   • Modify firmware environment values

How to assign user rights

Follow instructions below to assign user rights (this example uses Log on as service user right, steps are the same for other user rights):

1. Logon to the computer using an account with administrative privileges.
2. Open Administrative Tools from Control panel (or click Win+R, type control admintools and press Enter) and open Local Security Policy
3. Expand Local Policies and click on User Rights Assignment
4. In the right pane, right-click Log on as a service and select Properties.
5. Click on Add User or Group…’ button to add the new user.
6. In the Select Users or Groups window, find the user you wish to enter and click ‘OK’
7. Click OK in the ‘Log on as a service Properties’ to save changes.

(!) Ensure that the user which you have added to Log on as service user right is not listed in the Deny log on as a service policy in the Local Security Policy.
 

During installation, you can specify an existing user or create a new one. The specified user will be granted necessary rights during installation. In case you need to specify the rights manually (e.g. when changing the user later), please follow these instructions.

More information

You can verify the required privileges on the machine in one of these ways:

With Acronis system information report

1. Collect Acronis system information and open the archive.
2. In msinfo32report.nfo, find Acronis Managed Machine Service user:
   
3. Open rights_assign.txt and navigate to the [Privilege Rights] section. Here you can check whether Acronis Managed Machine Service user is granted the necessary privileges. Check whether this user is listed in:
   1. SeIncreaseQuotaPrivilege for "Adjust memory quotas for a process"
   2. SeAssignPrimaryTokenPrivilege for "Replace a process level token"
   3. SeServiceLogonRight for "Log on as a service"
   4. SeSystemEnvironmentPrivilege for "Modify firmware environment values"
      

With a special tool

1. Download detectprivileges.zip and unzip it
2. On the machine where you want to check privileges, log in under the user that is used for running Acronis Managed Machine Service or use "Run as" feature to start Command Prompt under that user.
3. Launch Command Prompt and navigate to the folder where the tool is stored. Run Detect Privileges tool and save output to a file, e.g.:
   DetectPrivileges.exe > report.txt 
4. Check the created report and adjust the necessary privileges.