VMware VS4-ENT-PL-A Setup Guide - Page 35
Set Database Permissions by Using the dbo Schema and the db_owner Database Role
View all VMware VS4-ENT-PL-A manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 35 highlights
Chapter 3 Before You Install vCenter Server 15 Revoke the VC_ADMIN_ROLE from the user [vpxuser] in the vCenter Server database. After you revoke the role, you can leave the role as inactive for use in future upgrades, or remove the role for increased security. If you remove the role, you must recreate the role and assign it to the user [vpxuser] before any future upgrade of vCenter Server. The hardcoded dbo role is removed from VCDB_mssql.sql. What to do next "Use a Script to Create a Microsoft SQL Server Database Schema and Roles," on page 36 Set Database Permissions by Using the dbo Schema and the db_owner Database Role If you use Microsoft SQL Server database, the simplest way to assign permissions for a vCenter Server database user is through the database role db_owner. Assign the db_owner role to the vCenter Server database user on both the vCenter and MSDB databases. Alternatively, experienced database administrators can set permissions by creating database roles and the VMW schema manually. See "Set Database Permissions By Manually Creating Database Roles and the VMW Schema," on page 34 and "Use a Script to Create a Microsoft SQL Server Database Schema and Roles," on page 36. That method, available beginning with vSphere 5.0, is recommended, because it gives the database administrator greater control over database permissions. The recommended method also removes the requirement to set up the database dbo schema and db_owner role for vCenter Server users who install and upgrade vCenter Server. Prerequisites Create the vCenter Server database. See "Create a SQL Server Database and User for vCenter Server," on page 33 Procedure 1 Assign the role dbo to the vCenter Server and Microsoft SQL databases. 2 For any user who will install or upgrade vCenter Server, assign the user the default schema dbo. When you install vCenter Server, the installer uses the default dbo schema to assign permissions to the db_owner role. Use a Script to Create a vCenter Server User by Using the dbo Schema and db_owner Database Role If you set database permissions by using the dbo schema and db_owner database role, you can use a script to create a vCenter Server user with the db_owner database role. Alternatively, experienced database administrators can set permissions by creating database roles and the VMW and SQL Server database schemas. See "Set Database Permissions By Manually Creating Database Roles and the VMW Schema," on page 34"Use a Script to Create a Microsoft SQL Server Database Schema and Roles," on page 36. That method, available beginning with vSphere 5.0, is recommended, because it gives the database administrator greater control over database permissions. That method removes the requirement to set up the database role dbo and db_owner schema for vCenter Server users who install and upgrade vCenter Server. Prerequisites Create the vCenter Server database. See "Create a SQL Server Database and User for vCenter Server," on page 33 VMware, Inc. 35