Configure the Log Database connection

Under Log Database Connection, configure the ODBC connection that Log Server uses to connect to the Log Database.

Steps

  1. Specify the ODBC Data source name (DSN) and enter a unique Description for the database connection.
  2. Provide the SQL Server location (IP address or hostname and instance name, if applicable) for the Microsoft SQL Server installation that hosts the Log Database, as well as the Connection port for sending data to the Log Database (1433, by default).
    Note: If a hostname is entered, a DNS lookup will convert it to the IP address of the SQL Server machine and the IP address will be saved in the Policy Server configuration file.
  3. If your environment uses SQL Server clustering, enter the virtual IP address for the cluster.
  4. Enter the name of the Default database (wslogdb70, by default).
  5. Indicate whether or not to Use SSL to connect to the Log Database. When SSL encryption is enabled:
    • BCP cannot be used to add records to the Log Database.
    • Log Database connections are slower, affecting reporting performance.
      Important:

      When Microsoft SQL Server components are configured so that “Trust Server Certificate” is set to No (the default), self-signed SSL certificates are not accepted for encryption of database connections.

      In this case, SSL certificates signed by a Certificate Authority must be properly deployed to the SQL Server, management server, and Log Server machines before you enable the “Use SSL” option in the Forcepoint Security Manager.

      See your SQL Server documentation for information about database encryption.

  6. Specify a Log Server connection method:
    • By default, SQL Server authentication is selected. To use SQL Server authentication, provide the SQL Server Account and Password to use.
    • Alternatively, you can use a Windows trusted connection (network logon account). The Websense Log Server service must be configured to run as this account.
  7. Click Test Connection to verify that it is possible to connect to the Log Database using the credentials provided.

    For information about the tests performed when you click the button, see Testing the Log Database connection.

Next steps

If you make changes to the database connection, after saving and deploying the changes, also restart the Websense TRITON - Web Security service on the management server machine to update the database connection for all reporting tools.