This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

The Community is now in read-only mode to prepare for the launch of the new Flexera Community. During this time, you will be unable to register, log in, or access customer resources. Click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

is the CLR integration feature required after the creation of the databases?

Jump to solution
juanr1vargas
By
Level 6
I have found the following information about CLR from the installation guide:
 
"By default the CLR integration feature is disabled and must be enabled by the DB system
administrator before database creation and installation. CLR is disabled by default to increase
security in shared hosting contexts. However, in this context, Flexera is a known vendor supplying trusted code for an environment fully controlled by your administrators. Flexera warrants that the CLR DLL signed by Flexera does not attempt to elevate privileges or behave maliciously."

‎Jun 23, 2020 10:30 AM

0 Kudos
(1) Solution

Jump to solution
kclausen
By
Flexera Alumni

@juanr1vargas - Yes, the SQL Server CLR option is required by FlexNet Manager to operate.  If you disable CLR, FlexNet Manager will not run.

View solution in original post

‎Jun 23, 2020 10:49 AM

(3) Replies

Jump to solution
kclausen
By
Flexera Alumni

@juanr1vargas - Yes, the SQL Server CLR option is required by FlexNet Manager to operate.  If you disable CLR, FlexNet Manager will not run.

‎Jun 23, 2020 10:49 AM

Jump to solution
juanr1vargas
By
Level 6
In response to kclausen

Thank you @kclausen 

‎Jun 23, 2020 10:59 AM

0 Kudos

Jump to solution
ChrisG
By Level 20 Flexeran
Level 20 Flexeran
In response to juanr1vargas

Here is some more information about the use of the SQL Server CLR feature by FlexNet Manager Suite On-premises.

FlexNet Manager Suite uses a signed CLR assembly with the SAFE permission set. As described at CLR Integration Code Access Security, assemblies with a SAFE permission set are restricted so that:

"Only internal computation and local data access are allowed. SAFE is the most restrictive permission set. Code executed by an assembly with SAFE permissions cannot access external system resources such as files, the network, environment variables, or the registry." 

On Microsoft SQL Server 2017 and later, configuration to allow this assembly to be created and executed is typically done with a special SQL Server login created from the appropriate certificate provided by Flexera, and having UNSAFE ASSEMBLY rights granted to the login. Alternative supported (but not recommended) configurations are to set the TRUSTWORTHY database property to “ON” for the compliance database, or to disable CLR strict security.

The SQL Server CLR feature is used by FlexNet Manager Suite to efficiently perform various functions in the database related to data filtering for different users based on the access rights they have been granted through their role memberships.

(Did my reply solve the question? Click "ACCEPT AS SOLUTION" to help others find answers faster. Liked something? Click "KUDO". Anything expressed here is my own view and not necessarily that of my employer, Flexera.)

‎Jun 25, 2020 09:04 PM