Critical System Protection

Hi,

I have SQL servers which have SCSP agent is installed on them and i want to allow the below paths on those servers (Allow) but i want to do the configurations from SCSP Server

1.  C:\Program Files\Microsoft SQL Server\MSSQL11.SYSAPPSDB\MSSQL\Binn\sqlservr.exe
2. C:\Program Files\Microsoft SQL Server\MSSQL11.WEBDS\MSSQL\Binn\sqlservr.exe
3. C:\Program Files\Microsoft SQL Server\MSSQL11.WEBDS\MSSQL\Binn\fdlauncher.exe
4. C:\Program Files\Microsoft SQL Server\110\Shared\SQLDUMPER.EXE SQLDUMPER.EXE C:\Program Files\Microsoft SQL Server\MSSQL11.SYSAPPSDB\MSSQL\Binn\sqlservr.exe
5. C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE IEXPLORE.EXE C:\PROGRA~2\Java\jre7\bin\ssvagent.exe

Thanks

Create a sandbox for SQL.  Assign the programs will fall into C:\Program Files\Microsoft SQL Server\*

Then you can assign the rights you need.  

Thank you Alex but i am a bit new to SCSP, so i dont get how to create a sandbox neither assignthe paths, so please more info.

So are you using 5.2.9 or 6.0.0? (6.0.0 is the rebranded name "Data Centre Security: Server Advanced")

I am using 5.2.9

You need to go to My Custom Programs, then create a program there.  That is essentially creating a sandbox.  Whn you drill into that program at the top you'll be able to choose what folders are part of this sandbox.  Best way is to wildcard folder contents.

First of all, apply that to the endpoint, then run in a commandprompt: "sisipsconfig --process"

You will then be able to see if the program you want to sandbox is running, and what sandbox it is under