First issue is when creating service accounts for Import Agent is the email requirement. In on-prem an email is not required when creating a basic Laserfiche User but in Cloud it is now a requirement.
What happens is the user just enters their own email address and it says that email is already in use by another account, so they just have to enter a random invalid email.
The second issue is the need to use a Full license without any option to prevent logging in through the web. This is a security vulnerability. With on-prem no one can login through Web Client or by any other means besides using the Import Agent service itself making it a true service account. Now if the password was somehow leaked, someone could use it to download, delete and access the repository in many unintended ways. Even for clients that use 2 factor auth, the import agent account is still a single password vulnerability where it was not on an on-prem system.