For the JBoss ON agent to effectively manage resources it must be run under a specific operating system account and group which has access to all managed resources on the host machine the agent is running. However, if security practices or requirements state that each service (JBoss server or any other managed resource) must run under its own account, it can complicate file system and process permissions and even can event prevent the JBoss ON agent from managing or monitoring key resources such as a JBoss EAP server.