Before you enable the Data Warehouse, you may need to specify the Unrestricted Search User database account.
This database account corresponds to the 'Unrestricted' security model. CA Data Protection consoles and external reporting tools can use this database account when searching the CA Data Protection Data Warehouse and CMS database for events. Unlike normal Search User database accounts, the Unrestricted Search User is not subject to row level security (RLS) when searching the database. If a reviewer has 'Unrestricted' security model, the reviewer can see any events when they run a search or report. Search results or reports are not restricted by policy class or the reviewer’s management group.
You can use the Administration console to add or modify credentials for the Unrestricted Search User database account.
To set credentials for the Unrestricted Search User
For Oracle CMS databases, this Database Administrator account must have the following system privileges:
CREATE SESSION RESOURCE DBA SYSDBA
When must I provide Database Administrator details?
Credentials for the Unrestricted Search User are securely stored in the CMS database and in the CMS internal file system. The two sets of credentials must be in sync.
You do not need to provide Database Administrator details if a DBA has already updated the Unrestricted Search User credentials in the CMS database. In this situation, CA Data Protection only needs to update the Unrestricted Search credentials stored in the CMS internal file system.
You do need to provide Database Administrator details if the CMS database has not been updated yet. In this situation, CA Data Protection simultaneously adds the Unrestricted Search User credentials to the CMS internal file system and the CMS database. CA Data Protection uses the Database Administrator account to log in to SQL Server or Oracle and update the CMS database.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|