How to Start an MS SQL Server Session with MS SQL Server Management Studio

PAM Core
1
  1. To start sessions using the senhasegura database proxy, there are some requirements, which are:
  • The environment needs to be on version 3.31 or higher;
  • It is necessary to configure the specific port that will receive the connection in MS SQL Server Management Studio (example 1433);
  • Communication between senhasegura and the target device via network is required;
  • It is essential to allow connection using the ‘SQL Server Authentication’ mode.
  • The device and credential must be registered in the vault, as well as visible to the desired user.
  1. Device and Credential Configuration:

image

The device must have an SQL Server connection registered on the desired port, in the example above, port 1433 was used. The registered device must be Windows, where the MS SQL is installed. In addition, the user and password that will be used must be configured in the credential.

image

  1. To log in, we should pay attention to the following points:

  • Server Name: The IP/hostname of senhasegura should be informed.

  • Authentication: The authentication mode should be ‘SQL Server Authentication’.

  • Logon: The connection string should follow the example below:

  • <vault_username>[<credential_username>@<device_hostname>{<database_port>}]

  • Domain credentials: <vault_username>[<domain\credential_username>@<device_hostname>{<database_port>}]

  • Session with MFA token: <vault_username>[<credential_username>@<device_hostname>{<database_port>}]<MFA_token>

  • The password to be informed is that of the user who logs into senhasegura, in the example above the user ‘Admin’.

To validate possible connection errors, you can check information in the log: ‘tail -f /var/log/senhasegura/proxy_ng/proxy-db-mssql.log’.

For more information, please refer to our documentation at the link here.

2

If I have a the following:

Credential: sa1

Device: 192.168.181.21
Port: 1433

How should the syntax be? A bit confused about the <vault_username>

3

@jokat
<vault_username> means that you have to use your username in PAM.

Syntax: <vault_username>[<credential_username>@<device_hostname>{<database_port>}]
For example: red213[[email protected]{1433}]

In this example, red213 is the user which I’m using to log into PAM Web UI. sa is the DB user. 10.10.10.10 is the DB IP.

4

Dear @Jade_Ariel

Please can send the full tutorial to be able to start the session to MS SQL Server management studio.

Thank You

5

Hello Yoel Chandra Eka Paksi,

Here is our documentation with a step-by-step guide on how to start a session in MS SQL Server Management Studio: link.

Best regards.

1 Like
6

Hi Red,
Can you mention the complete details that should be entered in the management studio.

PAM Server: 192.168.30.198
SQL Server with Management studio: 192.168.30.77
Remote Windows machine with Management studio: 192.168.30.114
Vault Username: aimen

Screenshot 2025-03-27 115901
Screenshot 2025-03-27 115901631×620 14.7 KB

7

After doing all of this, I am facing the following error… Any idea how to solve this ?

Screenshot 2025-03-27 182116
Screenshot 2025-03-27 182116806×262 15.1 KB

8

Hello Zarrar Khan,

Thank you for reaching out to us regarding the issue you’re experiencing.

To provide you with the best assistance and ensure a thorough analysis of the problem, we kindly request that you open a ticket on our platform. This will allow our technical team to gather specific details about the issue in question.

Platform: https://support.senhasegura.com/

Best regards!