Complete the following steps to add SQL Server endpoints you want to audit with a Windows agent.
NOTE:Microsoft Data Access Components (MDAC) 2.6 is required on the Windows agent computer to audit SQL Server endpoints. Secure Configuration Manager checks for MDAC when you add a SQL Server endpoint and displays an error if it is not already installed on the agent computer.
To add SQL Server endpoints to an existing agent in Secure Configuration Manager:
Log in to the Windows console for Secure Configuration Manager.
Expand IT Assets > Agents > OS > Windows.
In the content pane, right-click the Windows agent to which you want to add the endpoint, and then click Add Endpoint.
Click Next.
(Optional) To find an existing system on which to add an endpoint, click Existing Systems. Select a system and click OK.
In the Name field, type a name for the endpoint.
NOTE:Secure Configuration Manager does not allow an endpoint to be monitored by more than one agent, so you must enter an endpoint name that does not already exist on the computer. For more information, see Planning Microsoft SQL Server Endpoint Deployment.
For Endpoint Type, select SQL Server.
Click IP Lookup to look up the IP address of the endpoint or type the IP address in the IP Address field. Secure Configuration Manager supports IPv4 and IPv6 addresses.
In the endpoint properties table, verify or type the following required information.
Field |
Description |
---|---|
Host Name |
Name of the host computer running the SQL Server database. |
IP Address |
IP address of the database. Secure Configuration Manager supports IPv4 and IPv6 addresses. |
Database Protocol |
Connection protocol used by the Windows agent to connect to the SQL Server database. |
Database Port or Pipe |
Property for the database connection protocol specified in the Database Protocol field.
|
Authentication Mode |
Account used by the Windows agent to log in to the SQL Server endpoint.
Whether you use a SQL Server or Windows authenticated account, ensure that you have added this account to the sysadmin (System Administrators) role in SQL Server Enterprise Manager. |
User Name |
User name for the SQL Server authenticated login account or the account being impersonated. This field is not required if you selected Current Credentials in the Authentication Mode field. |
Password |
Password for the SQL Server authenticated login account or the account being impersonated. This field is not required if you selected Current Credentials in the Authentication Mode field. |
Major Version |
Version of SQL Server the endpoint is running. |
(Optional) To add more information about the endpoint, complete the following endpoint properties.
Field |
Description |
---|---|
Instance Name |
Name of the database instance. |
Contact Email |
Email address of the contact person. |
Contact Name |
Name of the designated contact person. |
Importance |
Criticality level of the endpoint. |
License Type |
Product for which you are licensing this endpoint. |
Location |
Location of the computer hardware. |
Notes |
Descriptive notes about the endpoint. |
Time Zone |
Time zone in which the computer hardware is located. |
Service Pack |
Microsoft Service Pack applied to the Windows operating system. |
Version |
Version of the SQL Server database that the endpoint represents. |
(Optional) To add the endpoint to a group, complete the following steps:
Click Add Endpoint to a Group, and then click Groups.
To add the endpoint to an existing group, select the group.
To add a new group for the endpoint, enter the new group name and description, and then click Create New Group.
Click Finish to return to the Define Endpoint window.
(Optional) To add more than one endpoint, click Add Endpoint. Repeat Step 5 through Step 11 for each endpoint that you want to add.
Click Finish.