User guide
9 SQL Sentry Security Overview
The Quick Start Guide covers the following topics related to SQL Sentry Security, including required
permissions for the various SQL Sentry components.
Security Topic Description
Monitoring Service
Security
This topic discusses the permissions required by the SQL Sentry
Monitoring Service account when watching (monitoring) Connections.
Client Security
This topic discusses the permissions required when running the SQL
Sentry Client, including scenarios in which the Client connects directly
to a monitored server.
Watching Servers Across
Domains
This topic is a brief overview of the options available for watching
(monitoring) servers across domains, including information about pass-
through authentication and configuring SQL Sentry Sites within your
environment.
Non-Windows
Environment
This topic discusses the options for watching (monitoring) Connections
in a non-Windows environment, including pass-through
authentication.
SQL Sentry Performance
Advisor
See this section for advanced information about the Performance
Advisor Security Requirements, including Port Requirements for
monitored servers.
The User Guide covers the following topics related to restricting user access within SQL Sentry.
Security Topic Description
Rights Based Security This topic discusses restricting user access within the SQL Sentry
Client based on Windows and SQL Server Authentication accounts.
Role Based Security This topic discusses restricting user access within the SQL Sentry Client
based on SQL Sentry Database roles.
9.1 Monitoring Service Security
The SQL Sentry Monitoring Service is a Windows service which runs in the context of a Domain
account.
This account must have SysAdmin privileges on each watched SQL Server.
The account must also have Windows Administrator privileges on any computer with a
watched Windows Task Scheduler connection, or to collect system level performance metrics
SQL Sentry Quick Start 27
©2015 SQL Sentry. All Rights Reserved.