Quick update, because I know you all care: turns out no matter what you do through the GUI console, the service still runs as the system account (!). Might be worth filing as a bug? I dimly recall reading something about this somewhere in the Tomcat documentation.
Next up: Tomcat reinstall, but this time not using the .exe distribution. L
