If you want to manage accounts for database services through the Zero Trust Privileged Access Service, you must first add the database to the Databases list. Initially, you might add databases and accounts one-by-one using the Add Database Wizard, which guides you through the information required. Alternatively, you can create an import file to add multiple databases and database accounts at once.
To add a new database to the database list:
- In the Admin Portal, click Resources, then click Databases to display the list of databases.
- Click Add Database to open the Add Database Wizard.
- Type a unique name to identify the database, select the type of database service you are adding, and specify the fully-qualified DNS host name or IP address, and click Next.
- If the database type is SQL Server, you should also specify an instance name unless you are using the default instance rather than a named instance and the server must use Mixed authentication and the accounts you add must be SQL Server login accounts and use SQL Server authentication.
- If the database type is Oracle, you must also specify a database service name and the accounts you add must be Oracle database accounts.
- If the database type is SAP ASE, the accounts you add must be Adaptive Server Enterprise (ASE) database accounts.
Note the following configuration instance that could cause a failed connection. If the SQL Server database is on a named instance or on the default instance but not using default 1433 port, then the connection will fail even if the port is not specified and the SQL Server Browser service is not running.
If the SQL Server database to be connected is the default instance (i.e. instance is not specified), even if the port is not specified and the SQL Server Browser service is not running, the SQL Server database server would try to connect to the database using the default port (i.e. 1433) and the database connection would be successful.
Optionally, you can also type a longer description for the database. For example, you might want to make note of the applications the database supports or the physical location of the server, then click Next to continue.
Add a user name and password for an account used to access the database and specify whether the password for the account is managed by the Privileged Access Service, then click Next.
Select Verify Database Settings to test access to the database using the account information provided, then click Finish.
If the database and account settings are successfully verified, click Close.
If there’s an error, test network connectivity and verify that the user name and password you provided are valid for the database you are attempting to add. If verification fails, close the error message, deselect the Verify Database Settings option, then click Finish to add the database and close the Add Database Wizard. You can only deselect the Verify Database Settings option if the password for the account is unmanaged. If the password for an account is managed, the database account must be verified to ensure the correct password is stored by the Privileged Access Service.