InstantForum.NET v2.9.0SQLServerCentralhttp://www.sqlservercentral.com/Forums/notifications@sqlservercentral.comMon, 20 May 2013 22:59:23 GMT20http://www.sqlservercentral.com/Forums/Topic1107513-471-1.aspxI'm glad this script inspired you today! Here's a question for you. Have you executed my script? It only reports on SQL authenticated user accounts. So you would not get any certificate users and nt authority accounts. As for "sa" I would leave that in the report as you would want to know if someone has been playing account with that account.Thanks,Rudy[quote][b]tim.shirey (5/12/2011)[/b][hr]Hey, you really inspired me today! We have some similar requirements for security auditing so I took the bones of your script to produce the scipt below. I did not want all your columns, but you could add them back in.This version doesn't need to loop it gathers everything in the select statement(s). I also removed the sa account, any certificate accounts, and domain users and groups.------------------------------------------------------------ SQL Login Audit ---- Find Local SQL Logins (remove sa, certificate users, ---- and nt authority) then audit the user -- ----------------------------------------------------------Thu, 12 May 2011 11:14:59 GMTRudy Panigashttp://www.sqlservercentral.com/Forums/Topic1107513-471-1.aspxHey, you really inspired me today! We have some similar requirements for security auditing so I took the bones of your script to produce the scipt below. I did not want all your columns, but you could add them back in.This version doesn't need to loop it gathers everything in the select statement(s). I also removed the sa account, any certificate accounts, and domain users and groups.------------------------------------------------------------ SQL Login Audit ---- Find Local SQL Logins (remove sa, certificate users, ---- and nt authority) then audit the user -- ----------------------------------------------------------Use MasterGOselect [name] as 'SQL User Name', [CreateDate] as 'CreateDate',(SELECT loginproperty([name], 'BadPasswordCount')) as 'Bad Password Count',(SELECT loginproperty([name], 'BadPasswordTime')) as 'Bad Password Time',(SELECT loginproperty([name], 'DaysUntilExpiration')) as 'Days Until Expiration',(SELECT loginproperty([name], 'DefaultDatabase')) as 'Default Database',(SELECT loginproperty([name], 'HistoryLength')) as 'History Length',(SELECT loginproperty([name], 'IsExpired')) as 'Is Expired',(SELECT loginproperty([name], 'IsLocked')) as 'Is Locked',(SELECT loginproperty([name], 'IsMustChange')) as 'Is Must Change',(SELECT loginproperty([name], 'LockoutTime')) as 'LockoutTime',(SELECT loginproperty([name], 'PasswordLastSetTime')) as 'PasswordLast Set Time' from sysloginswhere isntuser = '0' and isntgroup = '0'and [name] not in ('sa', '##MS_SQLResourceSigningCertificate##','##MS_SQLReplicationSigningCertificate##', '##MS_SQLAuthenticatorCertificate##', '##MS_PolicySigningCertificate##', '##MS_PolicyTsqlExecutionLogin##', 'NT AUTHORITY\SYSTEM', '##MS_PolicyEventProcessingLogin##', '##MS_AgentSigningCertificate##')Thu, 12 May 2011 10:38:12 GMTtim.shireyhttp://www.sqlservercentral.com/Forums/Topic1107513-471-1.aspx[quote][b]Twin-soft.com SME (5/12/2011)[/b][hr]Is there a similar set of queries for Windows based logons?[/quote]Windows authentication information is supplied by active directory. You should talk to your network administrators to get the same inforation. Now after saying that; I'm planning to create another script that will read this information right out of active directory from within SQL server. Only thing is that you will need Domain Admins rights to retrieve the infromation.I'll have it here as soon as it's done and tested.Thanks,RudyThu, 12 May 2011 06:46:16 GMTRudy Panigashttp://www.sqlservercentral.com/Forums/Topic1107513-471-1.aspxIs there a similar set of queries for Windows based logons?Thu, 12 May 2011 05:40:09 GMTRick.Cornell.SMEhttp://www.sqlservercentral.com/Forums/Topic1107513-471-1.aspxComments posted to this topic are about the item [B]<A HREF="/scripts/Security/73511/">Show SQL authentication login information</A>[/B]Thu, 12 May 2011 02:03:35 GMTRudy Panigas