SQL database security - Metasys - LIT-12011279 - General System Information - Metasys System - 13.0

Network and IT Guidance Technical Bulletin

Brand
Metasys
Product name
Metasys System
Document type
Technical Bulletin
Document number
LIT-12011279
Version
13.0
Revision date
2023-09-29
Product status
Active
Language
English

The Metasys server SQL Server databases are secured using SQL Server authentication.

SQL Server software accounts used by Metasys software can be end-user defined on the Metasys server platform. Added security is possible if you separate the database server function of the ADX from the web/application server function of the ADX. In this scenario, the database server portion of the ADX can reside in a different DMZ from the web/application server portion of the ADX.

SCT is configured to use virtual service account credentials to access the SQL Server databases. The service accounts have been configured with the level of permissions required to perform the actions used by the application. Windows authentication is more secure than database authentication, as it uses a certificate based security mechanism. Windows authenticated logins pass an access token, containing a unique security ID for the user, on login. Windows authentication also means that there is no required maintenance of user passwords and accounts, as all account maintenance is handed by the Windows operating system.