Client Security Best Practices Analyzer tool: Reporting account check

Applies To: Forefront Client Security

The reporting server uses the reporting account to access the reporting database and the collection database.

To access the reporting database, the reporting account must be a member of the following MOM group: SC DW Reader. If this is not the case, you must either grant the reporting account these privileges, or if you're reusing the DAS account for the reporting account, you must grant the DAS account these privileges.

To determine if the reporting account has the correct permissions, the Microsoft Forefront Client Security Best Practices Analyzer tool determines whether the server contains reporting components. If so, the tool determines whether the reporting account is a member of the SC DW Reader group.


This check must be run on the reporting database server.