Big news! The community will be moving to a new platform April 21. Read more.
Big news! The community will be moving to a new platform April 21. Read more.
Absent Member.
Absent Member.
1082 views

MS SQL: enabling server proxy account

this points to step #15, page 33, in the Connector 5.2.7 MicrosoftSQLMultServerAuditConfig.pdf:

15 Click the Security tab.  In the Server proxy account section, select Enable server proxy

account.  Set the Proxy account and Password fields to the domain user arcsight and its

password.  Click OK.

(from MSDN: Server Properties (Security Page) )

Enable server proxy account

Enables an account for use by xp_cmdshell. Proxy accounts allow for the impersonation of logins, server roles, and database roles when an operating system command is being executed.


Caution note Caution

The login used by the server proxy account should have the least privileges required to perform the intended work. Excessive privileges for the proxy account could be used by a malicious user to compromise your system security.

my question is, why is this required for the MS SQL Multi Server Audit DB, what are the commands that are required to be run via the xp_cmdshell that requires this permission?

Labels (1)
0 Likes
1 Reply
Absent Member.
Absent Member.

anyone..? im sure it would benefit everyone especially those who are working for critical organizations who value privileged account access control =]

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.