> CommCell Console > CommCell Management > CommServe Administration > Securing the CommServe Computer > Limiting Access to the CommServe Database

Changing the SQL Server Default Ports

Another step to harden access to the SQL database on the CommServe server is to change the default service ports. A default installation of SQL Server along with the Commvault software uses TCP port 1433 for client requests and communication. As the ports are well known and commonly attacked by hackers, you must change the TCP port set by SQL Server to your own customized port.

Procedure

  1. From the Start menu, go to All Programs > Microsoft SQL Server software folder > SQL Server Configuration Manager.

  2. Expand the SQL Server Network Configuration node, and then select Protocols for the SQL Server instance to be configured.

  3. In the right pane, right-click the protocol name TCP/IP, and then choose Properties.

  4. In the TCP/IP Properties dialog box, select the IP Addresses tab.

    Note

    There is a corresponding entry for every IP address assigned to the server.

  5. For all valid IP addresses that are pointing to the CommServe, set the Enabled property to Yes.

  6. Clear the values for both the TCP Dynamic Ports and TCP Port for each IP address section under TCP/IP Properties.

  7. In the IPAll section for each instance, type in a new port for SQL Server requests and communications. Port number should be in the dynamic range 49152-65535 to avoid conflict with Well-Known and Registered ports.

  8. Click Apply.

  9. To the CommServe computer, add the additional settings as shown in the following table.

    For instructions about adding an additional setting from the CommCell Console, see Adding or Modifying Additional Settings from the CommCell Console.

  10. Additional setting

    Category

    Type

    Value

    nPort

    Database

    Integer

    Enter the port number that you set for the CommServe SQL Server instance.

    nWFPort

    Database

    Integer

    Enter the port number that you set for the CommServe SQL Server instance.

    nCloudPort

    Database

    Integer

    Enter the port number that you set for the CommServe SQL Server instance.

  11. Restart the SQL Server Services.

    Note

    If a Web Server component has been installed on a host other than the CommServe, update the ODBC connection information with the new SQL port number. Consult Commvault documentation on Post-Installation Configurations for Web Server and Web Console.

  12. For each remote Web Server machine, perform step 1 through 10.

×

Loading...