Configure Audit Database Account

This is the account that Netwrix Auditor uses to write the collected audit data to the audit databases. Starting with version 9.96, you can use Group Managed Service Account (gMSA) for that purpose.

NOTE: gMSA cannot be used to access SSRS. Use a standard account for that. See Configure SSRS Account for details.

This account must be granted Database owner (db_owner) role and the dbcreator server role on the SQL Server instance hosting your audit databases.

To assign the dbcreator and db_owner roles

  1. On the computer where SQL Server instance with Audit Database resides, navigate to Start All Programs Microsoft SQL Server SQL Server Management Studio.

  2. Connect to the server.
  3. In the left pane, expand the Security node. Right-click the Logins node and select New Login from the pop-up menu.

  4. Click Search next to Login Name and specify the user that you want to assign the db_owner role to.
  5. Select Server roles on the left and assign the dbcreator role to the new login.
  6. Select the User Mapping tab. Select all databases used by Netwrix Auditor to store audit data in the upper pane and check db_owner in the lower pane.

    NOTE: If the account that you want to assign the db_owner role to has been already added to SQL Server Logins, expand the Security Logins node, right-click the account, select Properties from the pop-up menu, and edit its roles.