Allow the CA to Access the FIM CM Database

Applies To: Forefront Identity Manager Certificate Management

The CA is not automatically granted access to the FIM CM database on SQL Server. In order for FIM CM to work properly, you must allow the CA access to the database.

To ensure the CA can access the database on the SQL Server

1. Ensure you log on to the SQL Server with permissions to manage the database. Open SQL Server Management Studio.

2. In the Connect to Server dialog box, ensure Server type is Database Engine, Server name is the SQL Server hosting the FIM CM database. Authentication is typically Windows Authentication. Then click Connect.

3. In the console tree, expand Security and then expand Logins.

4. Right-click Logins and then click New Login.

5. On the General page, in the Login name textbox, enter <domain>\<hostname>$ and then click Search. For example, if the CA is named SUBCA1 and the domain name is CORP, you would enter CORP\SUBCA1$

6. In Select a page, click User Mapping, click to select the FIMCertificateManagement database.

   Note

   The default name of the FIM CM database is FIMCertificateManagement. If the database name was changed, then substitute the appropriate database name.

7. In the lower pane, click to select public and clmApp and click the OK button

8. In Select a page, click Status, ensure that Permission to connect to database engine is set to Grant and that Login is set to Enabled. Click OK.

Previous topic

Modify IIS 7 Authentication for FIM CM

Next topic

Optional: Configuring Kiosk Mode

See Also

Concepts

Installing and Configuring FIM CM Infrastructure