Documentation forSecurity Event Manager

Microsoft SQL Server connector authentication methods

When you create a connector for Microsoft SQL Server, there are two authentication methods currently available:

  • SQL Authentication
  • Windows Authentication

SQL Authentication

SQL authentication is the simplest solution. When using this authentication method, ensure that:

  • A user exists in the database where you are trying to connect.
  • Database connectors have the option attribute defined in DefaultReaderConfiguration. However, this attribute should be empty for this authentication method.
  • The connecting user has Read privileges from the accessed table or view.

Windows Authentication

Windows authentication uses the Windows Users and Active Directory to authenticate to the database. However, the Microsoft Java Database Connectivity (JDBC) driver does not support remote logging as a specific user.

To work around this issue, perform the following steps to configure SEM:

When you configure the connector, ensure that the Option field includes the following:
  1. Verify that:
    • The agent is installed on the machine hosting the targeted database.
    • The agent service is running as User.
    • The connecting user has Read privileges to read from the accessed table or view.
    • The account filled in service has administrator rights for FIM and USB Defender.
  2. Log in to the targeted machine as an Administrator.
  3. Navigate to Services.
  4. In the Services window, right-click the agent service.
  5. Select Properties.
  6. Select the Log On tab and then select This account.
  7. Complete in the credentials for the required user to log in to the database.
  8. Click OK.
  9. Restart the service.