Help Center
Go back to application
Help Center
Go back to application
Noreja Features & Functionality
General
Dashboard
Analyzer
Workbench
Builder
Connecting Data SourcesConfiguring an EntityCrafting a Dimension (Causal Hypothesis)Prepairing Data Sources: PostgreSQLPrepairing Data Sources: Microsoft SQL ServerPrepairing Data Sources: ServiceNow APIUsing Advanced Queries in ServiceNow API
Manager
Minerva-AI
Productivity Apps
Release Notes
Release Notes 02.04.2026 - v3.27.0Release Notes 15.03.2026 - v3.26.0Release Notes 26.02.2026 - v3.25.0Release Notes 20.02.2026 - v3.24.0Release Notes 30.01.2026 - v3.23.0Release Notes 12.01.2026 - v3.22.0Release Notes 17.12.2025 - v3.21.0Release Notes 20.11.2025 - v3.20.0Release Notes 13.10.2025 - v3.19.0Release Notes 05.09.2025 - v3.18.0Release Notes 14.08.2025 - v3.17.0Release Notes 31.07.2025 - v3.15.0Release Notes 17.07.2025 - v3.14.0Release Notes 03.07.2025 - v3.13.0Release Notes 19.06.2025 - v3.12.0Release Notes 29.05.2025 - v3.11.0Release Notes 15.05.2025 - v3.10.0
Tech-Blog
Weizenbaum Event in Berlin: How GenAI and Process Intelligence are revolutionizing process management🤖 Thoughts on Thinking Machines: When a Mesh of AI Agents Becomes More Than Just Software

Prepairing Data Sources: Microsoft SQL Server

Preparing Microsoft SQL Server for external connectivity is a critical step in establishing a secure and reliable analytics infrastructure. By enabling remote connections, configuring TCP/IP protocols, opening firewall ports, setting authentication modes, provisioning least-privilege users, and optionally enforcing encryption, administrators ensure that tools like Noreja can access data safely and efficiently. A properly configured SQL Server environment minimizes connectivity issues, strengthens security posture, and provides a stable foundation for scalable process intelligence and advanced analytics.

Overview

Before the Noreja application can connect to SQL Server, the database admin must ensure the server is listening on a network protocol, allow remote connections, configure firewall and SQL Browser settings, and create a database user with appropriate permissions. They should also consider encryption requirements, fixed ports for named instances, and validation of connection strings. The steps below reference Microsoft documentation to guide each task.

Enable Remote Connections

By default, SQL Server may not accept connections from other machines. You must explicitly enable remote access:

Allow Remote Connections

In SQL Server Management Studio (SSMS), right-click the server in Object Explorer and choose Properties.

Select Connections and check Allow remote connections to this server learn.microsoft.com.

Configure via T-SQL (alternative)

EXEC sp_configure 'remote access', 1;
RECONFIGURE;

This ensures logins from remote servers are accepted learn.microsoft.com.

Restart Services
After changing remote-access settings, restart the SQL Server service to apply changes apesoftware.com.

Enable and Configure Network Protocols

To allow TCP/IP connections—the most common protocol for external tools—you must enable and configure protocols in SQL Server Configuration Manager:

Open Configuration Manager
Go to SQL Server Configuration Manager → SQL Server Network Configuration → Protocols for <Instance>.

Enable TCP/IP

Right-click TCP/IP, select Enable, then restart the SQL Server service knowledgebase.apexsql.comlearn.microsoft.com.

On the IP Addresses tab, set TCP Port for each IP (e.g., 1433) and clear any TCP Dynamic Ports to enforce a static port learn.microsoft.com.

SQL Server Browser Service
For named instances, ensure SQL Server Browser is set to Automatic startup and is Running. This service listens on UDP 1434 and directs client connections to the correct port knowledgebase.apexsql.comlearn.microsoft.com.

Configure Windows Firewall (or Network ACLs)

Incoming traffic on the SQL Server port must be allowed:

Open Firewall Ports

Allow TCP 1433 (default instance) or the custom port you configured.

If using named instances and dynamic ports, you may need to allow sqlservr.exe as a program exception instead of a port learn.microsoft.com.

Enable SQL Server Browser
If clients connect using instance names (not explicit ports), allow UDP 1434 for the Browser service learn.microsoft.com.

Test Connectivity
From a client machine, use telnet servername 1433 or Test-NetConnection -ComputerName servername -Port 1433 to confirm the port is open learn.microsoft.com.

Choose and Configure Authentication Mode

SQL Server supports two authentication modes; you must enable the one matching your security policy:

  • Mixed Mode (SQL & Windows Authentication) In SSMS, right-click server → PropertiesSecurity → select SQL Server and Windows Authentication mode apesoftware.com.
  • Windows Authentication Only Use this when leveraging Active Directory; no SQL-level passwords are used. Ensure the external tool supports integrated security.

Restart Required
Changing authentication mode requires restarting the SQL Server service apesoftware.com.

Create a Login and Database User

Grant the external tool a dedicated account with least-privilege access:

Create Server Login

CREATE LOGIN [tool_user] WITH PASSWORD = 'StrongP@ssw0rd';

Create Database User

USE [YourDatabase];
CREATE USER [tool_user] FOR LOGIN [tool_user];

Grant Permissions
At minimum, grant CONNECT on the database and SELECT on required schemas or tables:

GRANT CONNECT TO [tool_user];
GRANT SELECT ON SCHEMA::dbo TO [tool_user];

Adjust for INSERT/UPDATE/EXECUTE as needed by your tool learn.microsoft.com.

Optional: Enforce Encryption

If the tool requires encrypted connections:

  • Install Server Certificate
    Use a CA-signed certificate in the SQL Server Configuration Manager → Protocols → Certificate tab.
  • Force Encryption
    On the Flags tab for TCP/IP, set Force Encryption to Yes, then restart the service learn.microsoft.com.
  • Client Configuration
    Ensure the tool’s connection string includes Encrypt=True;TrustServerCertificate=False;.

Verify and Test

Before production use, confirm everything works end-to-end:

Test via SSMS
From a remote machine, connect using the tool’s credentials and server name/port learn.microsoft.com.

Check Logs
Review SQL Server Error Log for any failed login or network-related errors.

Monitor Performance
Use Dynamic Management Views (e.g., sys.dm_exec_connections) to verify connection counts and types.

By following these steps—enabling remote connections and TCP/IP, opening firewall ports, configuring authentication, creating a dedicated user, and optionally enforcing encryption—DBAs ensure that external tools can reliably and securely connect to Microsoft SQL Server.

Was this article helpful?

English
Powered by Product Fruits