Click here to monitor SSC
SQLServerCentral is supported by Red Gate Software Ltd.
 
Log in  ::  Register  ::  Not logged in
 
 
 
        
Home       Members    Calendar    Who's On


Add to briefcase 1234»»»

SQL Server 2005 Logins Expand / Collapse
Author
Message
Posted Thursday, June 22, 2006 1:48 PM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Friday, September 26, 2014 7:52 AM
Points: 6,624, Visits: 1,873
Comments posted to this topic are about the content posted at http://www.sqlservercentral.com/columnists/bkelley/sqlserver2005logins.asp

K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #289491
Posted Wednesday, July 5, 2006 3:37 AM
SSC Journeyman

SSC JourneymanSSC JourneymanSSC JourneymanSSC JourneymanSSC JourneymanSSC JourneymanSSC JourneymanSSC Journeyman

Group: General Forum Members
Last Login: Thursday, April 15, 2010 9:02 AM
Points: 85, Visits: 33
I hope one of the series of articles deals with the horrifying interface mess in SQL Studio and how it affects security. While I think SQL Server 2005 did enhance security, the way it makes one manage it is a step backward, and makes me wonder if a lot of "default" security will become the normal because of how overly complicated the interface can be.
Post #292130
Posted Wednesday, July 5, 2006 6:49 AM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Friday, September 26, 2014 7:52 AM
Points: 6,624, Visits: 1,873
I can look at doing that. I prefer to manage the security on my servers through the T-SQL instead of through the SSMS interface, but you make a good point.


K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #292180
Posted Wednesday, July 5, 2006 10:53 AM
Hall of Fame

Hall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of FameHall of Fame

Group: General Forum Members
Last Login: 2 days ago @ 2:44 PM
Points: 3,475, Visits: 583

Brian,

Great Article, good examples. I like a lot that it points out differences between 7/2000 and 2005.

As a comment, there was probably one typo:

"............In order to turn on policy checking and password expiration, additional options must be specified. Those additional options are:

  • SID = SID
  • DEFAULT_DATABASE = default database
  • DEFAULT_LANGUAGE = default language
  • CHECK_EXPIRATION = { ON | OFF}
  • CHECK_POLICY = { ON | OFF}
  • CREDENTIAL = credential name

................"

I think you meant to say that in order to turn on policy checking and password expiration SOME of the additional options should be specified.  Please, correct me if I am not right and ALL of the above options should be specified for pasword expiration check.




Regards,
Yelena Varshal

Post #292268
Posted Wednesday, July 5, 2006 11:45 AM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Friday, September 26, 2014 7:52 AM
Points: 6,624, Visits: 1,873
No, you are most certainly right. Good catch. I had a couple of guys around the office proofread and none of saw that.


K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #292290
Posted Thursday, July 6, 2006 5:22 AM
SSCrazy

SSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazySSCrazy

Group: General Forum Members
Last Login: Yesterday @ 3:23 PM
Points: 2,907, Visits: 1,830
Hope the article on Symetric Keys and Certificates comes soon!

LinkedIn Profile
Newbie on www.simple-talk.com
Post #292467
Posted Thursday, July 6, 2006 3:23 PM


Keeper of the Duck

Keeper of the Duck

Group: Moderators
Last Login: Friday, September 26, 2014 7:52 AM
Points: 6,624, Visits: 1,873
What I'm thinking of is I'm going to do the database users article, a primer on crypto (what a DBA needs to know), and then go into the encryption within SQL Server 2005. How does that sound?


K. Brian Kelley, CISA, MCSE, Security+, MVP - SQL Server
Regular Columnist (Security), SQLServerCentral.com
Author of Introduction to SQL Server: Basic Skills for Any SQL Server User
| Professional Development blog | Technical Blog | LinkedIn | Twitter
Post #292652
Posted Thursday, July 27, 2006 5:00 PM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Tuesday, August 13, 2013 8:54 AM
Points: 131, Visits: 107

I actually have a question regarding a similar issue. I'm trying to migrate from SQL 2000 to SQL 2005. I need to migrate my windows Logins and SQL logins to SQL 2005 server. I wrote a script to get my SQL logins with their SID's over to SQL 2005 box. Can I also migrate their passwords???

 

Also, for Windows logins, if I'm trying to migrate them, do I need to care about their SID's? Thank you

 

Tej

Post #297973
Posted Friday, September 29, 2006 3:12 PM


SSC-Addicted

SSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-AddictedSSC-Addicted

Group: General Forum Members
Last Login: Today @ 8:16 AM
Points: 408, Visits: 229

Question?

 

If I disable a Windows login in SQL Server and I happen to have domain admin permissions, does this disable the login  on the domain?  I tried to disable a group of windows logins in sql and I got permission denied.  I am not an admin in the domain which is why I imagine this happened.

This is scary functionality especially if the windows ids and groups are used beyond SQL.

 

Susan




Post #312447
Posted Wednesday, October 11, 2006 8:33 AM
SSC-Enthusiastic

SSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-EnthusiasticSSC-Enthusiastic

Group: General Forum Members
Last Login: Wednesday, September 25, 2013 2:20 PM
Points: 161, Visits: 51

It's really awesome article for the beginners in SQL Server 2005 security.

Bhushan

 

Post #314670
« Prev Topic | Next Topic »

Add to briefcase 1234»»»

Permissions Expand / Collapse