You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Registering a SQL Server instance allows you to audit this instance and the associated databases. For each database you want to audit, register the corresponding SQL Server instance. When you register the instance, you can also deploy the SQL Compliance Manager Agent to begin auditing SQL events on this instance.

Before registering your SQL Server instance:

  1. Ensure the SQL Server instance you want to register meets the hardware and software requirements.
  2. Decide which SQL Server events you want to audit on this instance.
  3. Start the Management Console, and then click New > Registered SQL Server.

(screenshot)

To Register your SQL Server instance follow the New Registered SQL Server wizard below:


  1. Specify or browse to the SQL Server instance you want to register with SQL Compliance Manager, and then click Next. You can also specify the description SQL Compliance Manager uses when listing this instance in the Management Console.
  2. If the SQL Server instance is hosted by a Microsoft SQL Server Cluster virtual server, select the checkbox. Click Next.

  3. Indicate whether you want to deploy the SQL Compliance Manager Agent now or later, and then click Next. You can also choose to deploy the SQL Compliance Manager Agent manually, allowing you to install the agent at the physical computer that is hosting the registered SQL Server instance.

    If you are auditing a virtual SQL Server or a SQL Server instance running in a non-trusted domain or workgroup , you must manually deploy the SQLcompliance Agent to the computer hosting the instance. For more information, see Deploy the SQL Compliance Manager Agent manually.

  4. If you chose to deploy the SQLcompliance Agent now, specify the appropriate service account credentials for the agent, and then click Next. For more information, see Permissions requirements.
  5. If you chose to deploy the SQLcompliance Agent now, indicate whether you want the SQL Compliance Manager Agent to use the default trace directory, and then click Next. By default, the trace directory path is:
    C:\Program Files\Idera\SQLcompliance\AgentTraceFiles
    If you designate a different directory path, ensure the SQL Compliance Manager Agent Service account has read and write privileges on the specified folder.
  6. Select the server databases you want to audit, and then click Next. If you do not want to audit any databases, clear the Audit Databases check box.
  7. Select the collection level of server activities you want to audit, and then click Next.
  8. If you chose to create a custom audit collection, select the server activities you want to audit, and then click Next. You can also indicate whether you want to audit successful or failed access checks.
  9. If you chose to create a custom audit collection, specify which privileged users you want to audit, and then click Next. If you are auditing a virtual SQL Server or a SQL Server instance running in a non-trusted domain or workgroup, configure privileged user audit settings after you have deployed the SQL Compliance Manager Agent.
  10. If you chose to create a custom audit collection, select the database activities you want to audit, and then click Next. You can also indicate whether you want to audit successful or failed access checks, capture SQL statements for DML and SELECT activity, or capture the transaction status for DML activity.
  11. If you chose to create a custom audit collection, specify which privileged users you want to audit, and then click Next.
  12. Specify whether you want to grant the assigned SQL logins read access to events audited on this SQL Server instance, and then Next. For more information, see How Console security works.
  13. Click Finish.




SQL Compliance Manager monitor, audit and alert on SQL user activity and data changes.
IDERA | Products | Purchase | Support | Community | Resources | About Us | Legal

  • No labels