SQL Permissions

Advanced Insights ConfigMgr SQL Permissions requirements

If Advanced Insights is installed on your ConfigMgr site server, then you should not need to do any SQL permissions configuration.

The Advanced Insights IIS Application Pools run as the local computer Identity, which has ConfigMgr SQL database access by default.

Advanced Insights needs read access to the ConfigMgr SQL database. If Advanced Insights is installed on a server that is not the ConfigMgr site server, you will need to grant some SQL permissions.

Assigning Rights to ConfigMgr SQL

Using the Advanced Insights Computer Account (recommended)

  1. Open SQL Management Studio and connect to the required SQL instance for your ConfigMgr database

  2. Execute the following script replacing the domain\computername and CM_XXX database name

Use Master
DECLARE @ADVINSTSERVERNAME AS VARCHAR(100)
DECLARE @CMDBNAME AS VARCHAR(100)
SET @ADVINSTSERVERNAME ='domain\computername$' -- Replace 'domain\computername$' - Example 'contoso\sccmsqlsvr$'
SET @CMDBNAME ='CM_XXX' -- Replace with the name of your ConfigMgr database name
DECLARE @LOGIN_nonquoted AS VARCHAR(100) = @ADVINSTSERVERNAME
DECLARE @LOGIN AS VARCHAR(100) = QUOTENAME(@LOGIN_nonquoted)
DECLARE @CMDBNAME_nonquoted AS VARCHAR(100) = @CMDBNAME


EXEC ('CREATE LOGIN ' + @LOGIN + ' FROM WINDOWS');
EXEC ('USE' +' '+@CMDBNAME+';' + 'CREATE USER ' + @LOGIN + ' FOR LOGIN ' + @LOGIN);
EXEC ('USE' +' '+@CMDBNAME+';' + 'ALTER ROLE db_datareader ADD MEMBER' + @LOGIN)

PreviousBackup and Restore of your Advanced Insights ConfigurationNextConfiguration Manager Permissions

Last updated