jarick 15608 (4/24/2014)
I did something like this only to learn that we were out of compliance with a vendor and had broken a support agreement. This was a large company and I did receive the "JFDI" from the upper manager who signed off on the application.I had my get out of jail free card.
If the vendor's application still works, then still JFDI, even it's not compliant with the support agreement. If one of the vendor's techs need to poke around in the database to perform some maintenance operation, then you can temporarily add "SA" to the SYSADMIN role. But have a profiler or extended event trace running in the meantime to keep an eye on what system changes or other stuff they're doing while using elevated permissions.
"Do not seek to follow in the footsteps of the wise. Instead, seek what they sought." - Matsuo Basho