How to: Set up Database Access Account Rights - Symantec Endpoint Encryption

book

Article ID: 178363

calendar_today

Updated On:

Products

Endpoint Encryption

Issue/Introduction

 

Resolution

If you plan to use Microsoft Windows authentication with your SQL Server instance, you must provision a Microsoft Windows domain account before you install the Symantec Endpoint Encryption Management Server. If you use Microsoft SQL authentication, the installer automatically assigns these rights.

To set up the rights for the database access account:

  1. Give the account read and write access to this registry folder: HKLM\Software\Symantec\Endpoint Encryption.
     
  2. Give the account read and write access to the log directory. By default the log is stored at:

    C:\Program Files(x86)\Symantec\Symantec Endpoint Encryption Management Server\Services\Logs
     
  3. Add the Microsoft Windows account in SQL Server login accounts and map it to the Symantec Endpoint Encryption database. It requires the db_datareader, db_datawriter, and public roles on the Symantec Endpoint Encryption database.
     
  4. When you run the installer, in the Database Configuration tab you specify the Symantec Endpoint Encryption Management Server account's user name and password for database access through Windows Authentication.