Devolutions ForumDevolutions Forum

SQL Permission requirements

SQL Permission requirements

avatar
Iain

Hi,

Looking at finally creating our first Team data source. Using Microsoft SQL and pointing to an existing SQL server but creating a new database.

I have read all the documentation and performed the steps in our small POC. In the POC I connected to the POC SQL server with the SA account.

However, on the production I don't wish to do this.
I assume all that is required is to select Login Mode - Custom login. Then use a account that has the required privilege's to create the new database on the SQL host?

I also assume this account is just need to create the database?

Or am I best creating a new RDM account providing it certain permission on the SQL server?
I have tried to find the documentation on this, it does not really go into this detail.

Thanks
Iain

Version 2026.1.20.0 64-bit
Data Source SQL

All Comments (6)

avatar
Richard Boisvert

Hello,

To use the custom login, you can follow this documentation: https://kb.devolutions.net/rdm_implement_custom_login_mode.html

This way, your user will not have an account that can directly connect to the SQL database. Else, you can use Integrated Security, which is easier to implement, but not as secure.

Best regards,

Richard Boisvert

avatar
Iain

Hi,

Yep that's the bit I understood, I am after the required permissions need for the custom account?
What rights does it need on on the SQL server?

Thanks
Iain

Thanks
Iain

Version 2026.1.20.0 64-bit
Data Source SQL
avatar
Richard Boisvert

Hello Ian,

You can use the SA account to create an administrator account, and then use that new account to create your other users. This should prevent any errors and you will not need the SA account after that point.

Best regards,

Richard Boisvert

avatar
Iain

Morning,

Apologies, I thought I had got my head round this. However, I am now more confused. Mainly due to my limited knowledge of SQL it would appear.

I thought the best process for setting this up would be as follows:

  1. Log on to our AD and create a service account for RDM. Log on the SQL server and give this account dbcreator and public server roles.
  2. Then in RDM select custom and add the service roles login information. Select upgrade and create database.
  3. Go back on the SQL server and the account to the new database??


Your help with this is much apricated.
Thanks
Iain

Thanks
Iain

Version 2026.1.20.0 64-bit
Data Source SQL
avatar
Iain

Having played about again in the POC setup, I see that all users will need to be setup on the database in order to connect to the share. If I set up a new user with Authentication type custom:

forum image

I don't see a way of connecting that user to the share from the client as they are not a user on the DB.
So my previous post is a non starter.

Thanks
Iain

Version 2026.1.20.0 64-bit
Data Source SQL
avatar
Richard Boisvert

Hello Iain,

The simplest way is to use the SA account (or a sysadmin account) to create the database, and then the first administrator account in RDM; we will name it RDMRunner just like the example:
forum image

You can then connect to RDM with that account for your administration needs, you do not need the SA (or sysadmin) account anymore.

To create your users afterward, set the Authentication type to Custom (Devolutions)
forum image

Best regards,

Richard Boisvert

Ends in 9 days