Manualshelf

Storage Resource Manager Enterprise Edition Installation Guide

ManualsBrandsHP ManualsComputer AccessoriesCompaq SANworks Storage Resource Manager V4.0B - 1 License
131132133134135136137138139140
Storage Resource Manager Enterprise Edition A7
Database Concepts
Access is granted using sp_grantlogin with SQL Server 7.0. When the access is
granted, an SQL Server login is created for the SRM Service User Account. The
name of this login depends on the SQL Servers default domain, and the domain
of the Service User Account. (You can install across domains, provided there is a
one-way trust).
If the Service User Accounts domain and the SQL Servers default domain are
the same, the SQL Server login created is given the same name as the Windows
NT/Windows 2000 account name (by default, SRMSvcUser).
If the Service User Accounts domain and the SQL Servers default domain are
different, the SQL Server login created is given the name of the Service User
Accounts domain. For example, if the SQL Server default domain is
ENGINEERING, and the Service User Accounts domain is Orion
(Orion\SRMSvcUser), the SQL Server login is named Orion_SRMSvcUser,
where the underscore is whatever character you have mapped to the \ domain
separator.
In either case, the Windows NT/Windows 2000 Service User Account is mapped
to this login, providing the needed user-level access to the database.
Creates a group (roles in SQL 7.0) named SRMSvcGroup in the SQL Server
database. Grants Select, Insert, Update, Delete, and DRI (declarative referential
integrity) access to this group on each table in the SRM SQL Server database.
Permits the SRM Service User (SRMSvcUser by default) SQL login access to the
SRM SQL Server database. This is done by creating an SQL Server user in the
SQL Server database that corresponds to the SRM Service User SQL login. The
user is made a member of the SRMSvcGroup, thus inheriting the groups
privileges.
To support this security structure, SRM requires the use of the Named Pipes or
Multi-protocol Net-library for integrated security with Windows NT/Windows
2000. This enables the mapping of the SRM Service User Account to a login
within SQL Server. When SRM runs, all database access by the SRM Server or
SRM Web is done through the Service User Account. This access does not require
the clear-text specification of an SQL login password when SRM connects to the
database, which would be required if SQL Server Standard security were used.