Minimum Permissions to Perform ACM Database Updates:
The following instructions assume a DBA has created an empty database on the server, but the tables and objects in the database have not been createdThis page provides instructions to create two different types of users in SQL Server for ACM. One user has only the permissions required for ACM to run; the other has the permissions required for ACM to run and permissions to create and modify ACM database objects.
Non-privileged User
These instructions detail the minimum permissions required for all ACM services to interact with the database. They assume the ACM database and all necessary objects exist. This user cannot perform database updates via ACM Monitor nor can they execute database updates during a new install or ACM Upgrade.
Create a login on the server level per corporate requirements.
On the “User Mapping” tab, :
Check the checkbox next to the ACM database
Make sure the default schema is “dbo”.
Check the following roles in the “Database membership roles” box below the “Users Mapped to this login” label
db_datareader
db_datawriter
public
Select the “Securables” tab.
With the server highlighted, select the “Grant” checkbox next to “View server state”. (This permission allows the user to view the Database Statistics in ACM).
Click OK.
Refresh the “Security/Users” folder in the ACM database,
Right click the user you just created and choose “Properties”.
Select the “Securables” tab.
Add the “Control” permission other ACM required permissions for the ACM databaseBulk Manager and Archive Management processes:
Click the “Search” button
Choose the “Specific Types” option,
Click OK,
Search for Object types “Database”“Tables”
Click the “Browse” button
Select the ACM database you are working with
Click “OK”. The database will show up in the “Securables” grid.
With the database securable selectedfollowing tables:
EdgeEFMConfigurationErrors
tblArchiveStaging
tblCommStatsStaging
tblDailySummary
tblHourlySummary
tblItemStaging
tblPubStaging
Click “OK”
For each table, check the “Grant” checkbox next to “Control”the “Alter” permission.
Click OK
Minimum Permissions to run ACM Services
...
.
Privileged User
These instructions include the minimum permissions required to perform ACM database updates and run ACM services. They assume an empty database has already been created on the server, but the tables and objects in the database have not been created.
Create a login on the server level per corporate requirements.
On the “User Mapping” tab:,
Check the checkbox next to the ACM database
Make sure the default schema is “dbo”.
Check the following roles in the “Database membership roles” box below the “Users Mapped to this login” label
db_datareader
db_datawriter
public
Select the “Securables” tab.
With the server highlighted, select the “Grant” checkbox next to “View server state”. (This permission allows the user to view the Database Statistics in ACM).
Click OK.
Refresh the “Security/Users” folder in the ACM database,
Right click the user you just created and choose “Properties”.
Select the “Securables” tab.
Add the other ACM required permissions “Control” permission for the Bulk Manager and Archive Management processesACM database:
Click the “Search” button
Choose the “Specific Types” option,
Click OK,
Search for Object types “Tables”“Database”
Click the “Browse” button
Select the following tables:
EdgeEFMConfigurationErrors
tblArchiveStaging
tblCommStatsStaging
tblDailySummary
tblHourlySummary
tblItemStaging
tblPubStaging
Click “OK”
For each tableACM database you are working with
Click “OK”. The database will show up in the “Securables” grid.
With the database securable selected, check the “Grant” checkbox next to the “Alter” permission“Control”.
Click OK
.