Phone Lines icon GFI Support Home

Articles in this section

See more

Database Sources - Microsoft SQL Server

Author: Ma. Vivien Zarsuelo

Overview

This article contains the steps for the following:

Process

Creating a new Microsoft® SQL Server® group

To create a Microsoft SQL Server group:

  1. Click the Configuration tab > Event Sources.
  2. From Group Type, select Database Servers Groups.
     Screen_Shot_2019-06-28_at_7.44.12_PM.png
  3. From Groups, right-click Microsoft SQL Server and select Create group...
  4. Select Microsoft SQL Server as the server type and from the General tab configure the options accordingly.

    Option Description
    Group Name Key in a group name to identify the Microsoft SQL Server group.
    Description (Optional) Key in a description.
    Collects logs from the database servers included in this group Enable this option to collect database events from all servers in this group.
  5. Select the Logon Credentials tab and configure the options accordingly.

    Screen_Shot_2019-06-28_at_7.45.29_PM.png

    Option Description
    Use Windows authentication Connect to the Microsoft SQL Database using windows authentication.
    Use SQL Server authentication Connect to Microsoft SQL Database using a Microsoft SQL Database user account. Key in a username and password.

  6. Select Operational Time and configure the operational time when the database is normally used. Marked time intervals are considered normal working hours.

    Screen_Shot_2019-06-28_at_7.46.38_PM.png
  7. Select the SQL Server Audit tab and configure the options accordingly.

    Screen_Shot_2019-06-28_at_7.47.25_PM.png
    Option Description
    Archive all logs without further processing Archive events in GFI EventsManager database backend without applying processing rules.
    Process the logs with the rules selected below before archiving Specify the rules to perform before archiving events in GFI EventsManager database backend.

  8. Select the Settings tab and configure the options accordingly.

    Screen_Shot_2019-06-28_at_7.48.47_PM.png

    Option Description
    Scan all the events for all databases All Microsoft SQL Server events are collected and processed by GFI EventsManager.
    Scan only security events for all databases Only security events are collected and processed by GFI EventsManager.

  9. Click Apply and OK.

Adding a new Microsoft® SQL Server® event source

To add a new Microsoft SQL Server source:

  1. Right-click a database group and select Add new SQL Server®...

    Screen_Shot_2019-07-01_at_10.18.08_AM.png
  2. Key in the server name or IP and click Add.
  3. Click Finish and the Add New SQL Servers... dialog closes.
  4. From Groups, select SQL Servers and from the right pane, double-click the new Microsoft SQL Database instance.
    Note: Use Select and Import to search the network for SQL Server or import list of SQL servers from a text file respectively.
  5. From the General tab, configure the options accordingly.

    Screen_Shot_2019-06-28_at_8.01.14_PM.png
    Option Description
    Inherit SQL Server post collecting processing from parent group Inherits all settings from the parent group.
    Archive events in database Archive events in GFI EventsManager database backend without applying processing rules.
    Process using these rule sets Specify the rules to perform before archiving events in GFI EventsManager database backend.

  6. Select Connection Settings and configure the options accordingly.

    Screen_Shot_2019-06-28_at_8.01.24_PM.png
    Option Description
    Inherit the logon credentials from the parent group Select this option to inherit login settings from the parent group.
    Use Windows authentication Connect to Microsoft SQL Database using windows authentication.
    Use SQL Server credentials Connect to Microsoft SQL Database using a Microsoft SQL Database user account. Key in a username and password.

  7. Select the Settings tab and configure the options accordingly.

    Screen_Shot_2019-06-28_at_8.01.33_PM.png
    Option Description
    Inherit the settings from the parent group Inherits settings from the parent group.
    Scan all the events for all databases Scan all databases and collect all events from the Microsoft SQL Server.
    Scan only the security events for all databases Scan all databases and collect only security events from the Microsoft SQL Server.
    Scan all the events that are related to the following databases only Collect all events from the selected databases. Use Add, Edit and Remove to manage database sources.

  8. Click Apply and OK.

Related articles