PMC Management Database Prerequisites

The PMC deployment wizard can create and configure the PMC management databases. Alternatively, if you have a separate team within your business to create and configure the PMC management databases, please follow the instructions in this section.

For a manual set up, you need to create and configure the PMC management databases prior to running the PMC deployment wizard, as the wizard checks for them.

For more information, please see AD BridgeBeyondInsight/Password SafeDevOps Secrets SafePrivilege ManagementPrivileged IdentityPrivileged Remote AccessRemote Supportwww.beyondtrust.combeyondtrust.comContact SalesContact Support.

For a manual set up, you need to create the PMC management databases prior to running the PMC deployment wizard, as the wizard checks for them. In this instance, you will configure the databases after the PMC deployment, as the database scripts require the tenant ID GUID, which is generated for you by the deployment wizard. The database scripts also require the PMC admin username and the PMC admin email address, which you are prompted to enter on the Authentication tab.

The configuration of the PMC management databases also requires the tenant GUID, which is generated for you by the deployment tool and is displayed on the Authentication tab as well.

Azure AD Authentication - Create and Configure the PMC Management Databases

You need the following information to create and configure the PMC management databases.

Attribute Location
TenantID

This is your tenant ID GUID from Microsoft Azure.

Account Name

This is your account name for PMC.

Email Address This is the email address associated with the account name.


The scripts to configure the databases are in the SQL folder of the PMC deployment package.

To create and configure the PMC management database manually:

  1. Create a database called Avecto.IC3.Database.Management. Ensure the logged on user has the dbo.owner SQL server permission.
  2. Execute the Avecto.IC3.Database.Management.sql script.
  3. Edit the AuthorizationModel.sql script and replace <TENANTID> on the fourth line of the script with your information:
    <TENANT ID>
  4. Execute the now modified AuthorizationModel.sql script.
  5. Edit the CreateJobAgentServiceUser script and replace the following placeholder with your information:
    <TENANT ID>
  6. Execute the now modified CreateJobAgentServiceUser.sql script.
  7. Edit the CreateAutomationClientUser.sql script and replace the following placeholder with your information:
    <TENANT ID>
  8.  Execute the now modified CreateAutomationClientUser.sql script.
  9.  Edit the CreateAdministratorUser.sql script and replace the following placeholders with your information:
    <TENANT ID>
    <ACCOUNT NAME> 
    <EMAIL ADDRESS> 
  10. Execute the now modified CreateAdministratorUser.sql script.
  11. Edit the CreateSystemConfigurationSettingsDefault.sql script and replace the following placeholders with your information:
    <TENANT ID>
  12. Execute the now modified CreateSystemConfigurationSettingsDefault.sql script.
  13. You need to open the firewall port for the instance of SQL. If this is the default instance, the port number is 1433, otherwise you need to use the custom SQL port for the instance.

The PMC management database is now created.

To create and set up the PMC Blob storage database manually:

  1. Create a database called Avecto.IC3.Database.BlobStorage. Ensure the database has SQL server authentication with the dbo.owner permission.
  2. Execute the Avecto.IC3.Database.BlobStorage.sql script.

The database for the Blob storage is now created.

Windows AD and LDAPS Authentication - Create the PMC Management Databases

For Windows Active Directory and LDAPS authentication you need to configure the PMC management databases after you have run the PMC deployment wizard; however, you need to create the databases before you run the PMC deployment wizard.

To create the PMC management databases manually:

  1. Log in to your SQL Server machine with your credentials.
  2. Create a database called Avecto.IC3.Database.Management. Both SQL and Windows authentication is supported. Ensure the database has the dbo.owner permission, as this is required for creation. This user is not subsequently used by PMC, as you configure a different user to communicate with the PMC services when you set up the PMC services.
  3. Create a database called Avecto.IC3.Database.BlobStorage.sql. Ensure the database has the dbo.owner permission. This user is not subsequently used by PMC, as you configure a different user to communicate with the PMC services when you set up the PMC services.