About SQL Server privileges

When you install SQL Server, you can elect to use either integrated security or standard security. Integrated security refers to the usage of Windows authentication in lieu of standard SQL Server-based logons.

Note:

Microsoft recommends using integrated security. Windows logons, unlike SQL Server-based logons, can be traced with standard Windows security tools. NetBackup for SQL Server supports both integrated security and standard security for any level of SQL Server.

If you select integrated security, then SQL Server ignores the user ID and password that you provided in the SQL Server connection properties dialog box of the NetBackup Database Extension GUI. Instead, use security validation to perform backup and restore operations. Also use security validation for querying the master database are based upon the SQL Server privileges that are granted to the Windows account. The batch file user ID and password keywords are also ignored. When integrated security is used SQL Server operations generated by NetBackup for SQL Server are always validated against the Windows user ID.

If you select standard security, then you must supply NetBackup for SQL Server with a SQL Server-based user ID and password. This user ID and encrypted password are stored in the registry under the following key:

HKEY_CURRENT_USER\SOFTWARE\VERITAS\NETBACKUP\NetBackup for 
Microsoft SQL Server\

To perform an operation with standard SQL Server security, NetBackup for SQL Server looks up the SQL Server user ID and password from the registry.

Note:

Since NetBackup for SQL Server does back up and restore commands and issues select statements against the master database, review the SQL Server user documentation to determine exactly what privileges are required by the user accounts that you establish for NetBackup for SQL Server.