Offline Assessment for SQL 10, or Windows Server 2008, Windows Server 2008 R2, Windows Server 2012,...

Click here to load reader

  • date post

  • Category


  • view

  • download


Embed Size (px)

Transcript of Offline Assessment for SQL 10, or Windows Server 2008, Windows Server 2008 R2, Windows Server 2012,...

  • 1

    How to prepare for your Offline Assessment for SQL Server

    The tools machine is used to connect to each of the SQL servers hosts and SQL Server instances in your environment and retrieves information from them, communicating over Remote Procedure Call (RPC), Server Message Block (SMB), NET Framework Data Provider, and Distributed Component Object Model (DCOM). Once the data is collected and the operational interview is completed, the Offline Assessment tool will analyze the data locally. A checklist of prerequisite actions follows. Each item links to any additional software required for the tools machine, and detailed steps included later in this document.


    Please ensure the following items have been completed before starting your engagement.

    1. General Use

    A Microsoft Account is required to activate and sign in to the portal to download the tool-

    set. If you dont have one already, you can create one at

    To learn more about Microsoft Accounts, see:


    Ensure access to

    2. Data Collection

    a. Tools machine hardware and Operating System:

    Server-class or high-end workstation machine running Windows 7, Windows 8, Win-dows 10, or Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server 2016

    Note: Windows Server 2003 is not supported as a tools machine. To successfully gather Performance data, please ensure the data collection machines OS matches, or is a higher version of the highest versioned OS target machine used within the environment.

    Minimum: 8GB RAM, 2Ghz dual-core processor, 5 GB of free disk space plus up to 7 GB for every 100,000 objects in the assessed environment during data collection.

    Joined to one of the domains of the environment to be assessed

    Offline Assessment for SQL Server

    All data collection and

    analysis is done locally

    on the tools machine.

    No data is transported

    outside your SQL Server

    environment to help

    protect your

    data. Your data is

    analyzed using our

    RAP expert system that

    is part of the Offline

    Assessment client.


    This document was last updated October 25, 2016 To ensure you have the latest version of this document , check here:

  • 2

    b. Software for Tools machine:

    Microsoft .NET Framework 4.6 installed

    Windows PowerShell 2.0 or later installed

    c. Account Rights:

    Local Administrator account with Admin access to all the SQL server instances and hosts

    d. Additional Requirements for Windows Server 2008 Servers or later:

    Configure the servers firewall for Remote Event Log Management

    The Appendix Data Collection Methods details the methods used to collect data.

    The rest of this document contains detailed information on the steps discussed above.

    Once you have completed these prerequisites, you are ready to start the Offline Assessment.

  • 3

    1. Hardware and Software

    Server-class or high-end workstation computer equipped with the following:

    Minimum single 2Ghz processor Recommended dual-core/multi-core 2Ghz or higher processors.

    Minimum 4 GB RAMRecommended 8 GB RAM.

    Minimum 5 GB of free disk space.

    Windows 10, Windows 8, Windows 7, Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 or Windows Server 2008. Windows Server 2003 is not supported as a data collection machine.

    Note: To successfully gather Performance data, please ensure the data collection machine s OS matches, or is a higher

    version of the highest versioned OS target machine used within the environment.

    Can be 32-bit or 64-bit operating system.

    At least a 1024x768 screen resolution (higher preferred).

    A member of the same domain as the SQL Server hosts or a member of a trusted domain.

    Microsoft .NET Framework 4.6.

    Windows PowerShell 2.0 or higher

    Windows PowerShell 2.0 is part of the Windows Management Framework

    Networked Documents or redirected Documents folders are not supported. Local Documents folder on the data collection machine is required.

    2. Accounts Rights

    A domain account with the following:

    Member of the local Built-in Administrators group

    Local administrator permissions to all SQL server hosts to be assessed.

    Administrative access to the SQL server instances (member of SysAdmin Role)

    WARNING: Do not use the Run As feature to start the client toolset as the discovery process and collectors might fail.

    The account starting the client toolset must logon to the local machine.

    Machine Requirements and Account Rights

  • 4

    3. Network and Remote Access

    Unrestricted network access to every server in the environment

    This means access through any firewalls, and router ACLs that might be limiting traffic to any server. This includes remote access to DCOM, Remote Registry service, Windows Management Instrumentation (WMI) services, and de-fault administrative shares (C$, D$, IPC$).

    The following services must be started on the target SQL Server hosts:


    Remote Registry service

    Server service

    Workstation service

    File and Printer Sharing service

    Automatic Updates service

    Performance Logs and Alerts service

    For Availability Groups in Azure follow the requirements in Appendix A. Special Requirement for Availability Group Cluster in Azure

    To access an instance of the SQL Server through a firewall, you must configure the firewall on the computer that is running SQL Server to allow access

    If SQL Server instance is running on a static TCP/IP port, open the static port in the Windows firewall for TCP access.. Open Windows Firewall access to SQL Server when using dynamic ports.

    For more information, refer to the KB article below:

    Configure a Windows Firewall for Database Engine Access

    Remote computer scans are performed by using TCP ports 135, 139, and 445. RPC communications and DCOM must be enabled.

    Configure the server firewall to ensure all SQL Server hosts running Windows Server 2008/R2 and higher have

    Remote Event Log Management enabled: RAP as a Service Client might be unable to collect event log information

    from a Windows Server 2008/R2 or higher SQL Servers hosts if Remote Event Log Management has not been allowed.

    When Remote Management is enabled, the rules that allow Remote Event Log Management are also enabled.

    To test if the tool will be able to collect event log data from a Windows Server 2008 R2 SQL Server host you can try to

    connect to the Windows Server 2008/R2 server using eventvwr.msc. If you are able to connect, collecting event log data is

    possible. If the remote connection is unsuccessful you may need to enable the Windows built-in firewall to allow Remote

    Event Log Management.


  • 5

    Appendix A: Special Requirements for Availability Group Cluster in Azure

    Virtual networks in Azure put some connectivity restrictions to clusters and availability groups that affect the toolset. In summary:

    1. You cannot use the listener name for discovery. You can use the cluster name or a node name.

    2. If you are using cloud services (discontinued in Azure Resource Manager for IaaS) and you are using an External load balancer

    (internal load balancer does not have this limitation), then you need to have the tools machine in a different cloud service as

    shown in this image.

    3. You need to modify the hosts file to make the Cluster Collectors work. You need to identify the IP of the active node and modi-

    fy the hosts files as shown below. The hosts file is located at C:\Windows\System32\drivers\etc.

    Note: The hosts configuration change needs to be reviewed every time you run the toolset in case a failover has happened since

    the last time the toolset was executed.

  • 6

    Appendix B: Data Collection Methods Offline Assessment for SQL Server uses multiple data collection methods to collect information. This section

    describes the methods used to collect data from a SQL Server environment. No VB scripts are used to collect data.

    Data collection uses workflows and collectors. The collectors are:

    1. Registry Collectors

    2. FileDataCollector

    3. WMI

    4. TSQL Data collector

    5. EventLogCollector

    6. Windows PowerShell

    7. SQL Error Log collection

    8. Local Security Policy

    9. Performance Monitor Coun