You want to make sure that you give only those rights and permissions required for HelpDesk Users to perform their tasks, while making sure they do not get additional rights such as changing the Symantec Endpoint Encryption Manager password.
You need to give only dB_reader right to the helpdesk users to access the SQL database.
dB_writer right should not be given as the helpdesk users would be able to change the Symantec Endpoint Encryption Manager password.
To run the Reports, you would need to give the 'Connect' and 'Execute' rights.
Also 'SELECT' right need to be given to Helpdesk Users if there are named instances in SQL.
For all versions of Guardian Edge/Symantec Endpoint Encryption.
Imported Document ID: TECH170084
Subscribing will provide email updates when this Article is updated. Login is required.