You may require the SQL Server to run on a LogRhythm server under a domain account. This is usually required when the LogRhythm server requires access to networked resources on the Windows domain.
To configure an SQL server to run under a domain account:
-
Create a domain account within Active Directory to run the SQL Server services.
Note that the account only needs to be a member of the Domain Users group. -
Add the new domain account to the local Administrators group on the LogRhythm server.
-
The new domain account should be granted Log on as a service in the LogRhythm server local security policy.
You could instead add the new domain account to the Domain Policy; however, be aware that this will result in having the right on all machines affected by the policy.
-
Open the Services control panel on the LogRhythm server and stop these services in the following order:LogRhythm Mediator ServerLogRhythm Alarming and Response ManagerSQLSERVERAGENTMSSQLSERVER
-
From the Overview control panel, set the following services to run under the newly created domain account:SQLSERVERAGENTMSSQLSERVER
-
From the Services control panel, start the SQL Server services in the following order:MSSQLSERVERSQLSERVERAGENTLogRhythm Alarming and Response ManagerLogRhythm Mediator Server
-
Verify that all services started correctly and without errors.