How to add an external MySQL Database to CA PAM

Document ID : KB000015538
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

I would like to configure my session logs in PAM to be administrated in an external MySQL server.

 

Question:
  • What is required from my side?
  • How does PAM connects to my database?
  • Do I have to manually create the tables?
  • Is the MYSQL Database going to be installed on the external storage? 
  • How to install the MYSQL Database on an external storage?
Answer:
  • PAM Appliance is a black box. The MYSQL DB is not installed in PAM. It has to be created in your own environment, in a DB server.
  • To prepare it is only necessary to create a new database accordingly. No tables are required to be created. 
  • When PAM communicates attaches the new MySQL Database the very first time, it will automatically create the tables.

Follow the below steps:

1) Install MySQL in a server.

Note: Ensure port 3306 is open between PAM and the MySQL Server.

2) Connect to MySQL and create the database. 

mysql>create <Database Name>;

3) Grant privileges to the db user that is going to connect to the database from PAM:

mysql>GRANT ALL PRIVILEGES ON *.* TO root@'<PAM Hostname>' IDENTIFIED BY '<your password>' WITH GRANT OPTION;

[OR mysql>GRANT ALL PRIVILEGES ON *.* TO root@'%' IDENTIFIED BY '<your password>' WITH GRANT OPTION;]

mysql> FLUSH PRIVILEGES;

4) Login to PAM and go to Config>>Logs

Configure the External Log Server with the server IP where the DB is connected, port and credentials.

LogBDMysqlJPG.JPG

5) Click on Update. You should get the following message:

SuccessfullLogDB.JPG

6) Connect to your database and verify that tables get created:

mysql>use <Database Name>; 

mysql>show tables;

Eg: my <Database Name> is logpam

mysqlDBLogsTable.JPG

Additional Information:

https://docops.ca.com/ca-privileged-access-manager/2-8/EN/reference/web-gui/toolbar/config/logs#Logs-ExternalLogServer

 

Note: This has to be a MySQL server. SQL Server is not compatible.