Cisco Unified MeetingPlace, Release 7.0 -- How to Create and Use a Least-Privileged SQL Account for Web Conferencing

From DocWiki

(Difference between revisions)
Jump to: navigation, search
(added this note: '''NOTE:''' When you restart the Web Server, all manual changes made to the registry are lost.)
(Procedure)
 
(One intermediate revision not shown)
Line 1: Line 1:
 +
{{Template:Required Metadata}}
'''Main page:'''  [[Cisco Unified MeetingPlace, Release 7.0]]
'''Main page:'''  [[Cisco Unified MeetingPlace, Release 7.0]]
Line 46: Line 47:
#** db_datawriter
#** db_datawriter
#** db_ddladmin
#** db_ddladmin
 +
#** db_owner
# Repeat [[Cisco Unified MeetingPlace, Release 7.0 -- How to Create and Use a Least-Privileged SQL Account for Web Conferencing#Step 7|Step 7]] for each additional MPWEB slave database.   
# Repeat [[Cisco Unified MeetingPlace, Release 7.0 -- How to Create and Use a Least-Privileged SQL Account for Web Conferencing#Step 7|Step 7]] for each additional MPWEB slave database.   
#: The slave databases have names that begin with "MPWEB_". Depending on your deployment, your SQL Server will have either one or two slave databases.
#: The slave databases have names that begin with "MPWEB_". Depending on your deployment, your SQL Server will have either one or two slave databases.
-
# Click '''OK''' to complete the account configuration.  
+
# Click '''OK''' to complete the account configuration.
-
 
+
-
 
+
== Updating SQL Account Access from the MeetingPlace Gateway Configurations Utility ==
== Updating SQL Account Access from the MeetingPlace Gateway Configurations Utility ==

Latest revision as of 22:29, 9 November 2012

Main page: Cisco Unified MeetingPlace, Release 7.0

Up one level: Configuration



By default, the Cisco Unified MeetingPlace Web Conferencing installer suggests using the SQL built-in sa administrator account as the SQL Server user name. Often, a strong password for the sa account is sufficiently secure to protect your system from unauthorized access. However, if you do not want to continue to use a SQL account that has full administration rights after the installation is complete, you can create a SQL account with minimal privileges that is dedicated for use with Cisco Unified MeetingPlace Web Conferencing, and configure the Web Server to use this account.


Complete the following procedures in the order shown to create and use a least-privileged SQL account:



Contents

Creating a Least-Privileged SQL Account for Web Conferencing

Caution! If you choose to create a SQL account that is dedicated for use with Cisco Unified MeetingPlace Web Conferencing, ensure that it meets all the specified database role requirements in this procedure. Failure to do so can cause a database connection failure between the web conferencing application and the SQL Server and result in a total outage or broken features.


Note: If Cisco TAC determines that your SQL account does not meet requirements, you will be asked to reconfigure your SQL account and to delete any existing Cisco Unified MeetingPlace Web Conferencing database so that a new database can be created once the account problem is remedied.


Procedure
  1. Open the SQL Server Enterprise Manager and create a new login:
    1. On the Start menu, click Programs > SQL Server 2000 > Enterprise Manager.
    2. Click a server group to expand it, then click the name of a server.
    3. Click Security > New Login.
    The SQL Server Login Properties window displays.
  2. Enter a name for the login on the General tab.
  3. Click SQL Server Authentication.
  4. Enter a password for the account.
  5. Click MPWEB from the Database drop-down menu to set the MPWEB database as the default database.
  6. Click the Database Access tab.
  7. Specify the database roles for the MPWEB database:
    1. Check the MPWEB database in the Databases table.
    2. Check the boxes for the following roles in the Database Roles table:
      • db_datareader
      • db_datawriter
      • db_ddladmin
      • db_owner
  8. Repeat Step 7 for each additional MPWEB slave database.
    The slave databases have names that begin with "MPWEB_". Depending on your deployment, your SQL Server will have either one or two slave databases.
  9. Click OK to complete the account configuration.

Updating SQL Account Access from the MeetingPlace Gateway Configurations Utility

The MeetingPlace Gateway Configurations utility allows you to update the Web Server with the least-privileged SQL login account that you have already created. It does not create a SQL Server login or update the SQL Server for you.


Before You Begin

Change the username and password on SQL Server. See Creating a Least-Privileged SQL Account for Web Conferencing for instructions.


Procedure
  1. Stop the Cisco Unified MeetingPlace Web Conferencing Service.
  2. Open the MeetingPlace Gateway Configurations utility.
  3. Click the Web Conferencing tab.
  4. Enter the hostname or IP address of the SQL Server that you want to update in the Server field.
    • Enter local for a local server.
  5. Enter the username and password that you applied to the SQL Server.
  6. Click OK.
  7. Restart the Cisco Unified MeetingPlace Web Conferencing Service.

NOTE: When you restart the Web Server, all manual changes made to the registry are lost.


Related Topics

Rating: 0.0/5 (0 votes cast)

Personal tools