sa password change, is it required with CHECK

SQLServerCentral is supported by Red Gate Software Ltd.

Popular Topics

Home

Members

Calendar

Who's On

Home » SQL Server 2005 » Administering » sa password change, is it required with...

sa password change, is it required with CHECK_POLICY=ON

Rate Topic

Display Mode

Topic Options

Author

Message

samiam914

Posted Sunday, June 13, 2010 8:31 PM

Valued Member

Group: General Forum Members
Last Login: Saturday, October 08, 2011 1:07 PM
Points: 52, Visits: 294

SQL server 2005 with Windows Server 2003 R2

During installation of SQL Server 2005, sa login was created, sa id is not used by any one; however sa is the dbo of master, msdb, model & tempdb.

Scripting of the sa id shows:

CREATE LOGIN [sa] WITH PASSWORD=N'...', DEFAULT_DATABASE=[master], DEFAULT_LANGUAGE=[us_english], CHECK_EXPIRATION=OFF, CHECK_POLICY=ON
GO
EXEC sys.sp_addsrvrolemember @loginame = N'sa', @rolename = N'sysadmin'
GO

Windows password change policy was never implemented for years, now they require it, and the policy kicked in couple of weeks ago.

SQL Server services run under local system, with no password expiration.

All ID's are windows authenticated, except for this sa ID.

Is it necessary for me to change the sa password?
What sort of problems are expected if I do not change or do change.

SQL Server crashes some times when a stored procedure is run which uses Oracle linked server, at other times same procedures run fine under the same conditions!! IE, when they are executed via SQL Server Management studio.

I did change the windows ID that is in the linked server that gets mapped to Oracle ID (Oracle ID does not conform to password policy, it is on unix server anyway).

Unable to explain these crashes.

Thanks in advance.

Post #936595

Bhuvnesh

Posted Monday, June 14, 2010 4:43 AM

SSCrazy

Group: General Forum Members
Last Login: Tuesday, March 26, 2013 8:41 AM
Points: 2,562, Visits: 3,451

samiam914 (6/13/2010)

Is it necessary for me to change the sa password?
What sort of problems are expected if I do not change or do change.

It is not necessary but recommended to change it , if you feel that some anonymous people know it (which shouldnt be) then you must change it
secondly if wont effect anythiing unless you are using it at places where it is specified or hard coded.

-------Bhuvnesh----------
While 1 = 1 (Learning SQL....)
Click to get fast response of your post

Post #936706

samiam914

Posted Monday, June 14, 2010 3:06 PM

Valued Member

Group: General Forum Members
Last Login: Saturday, October 08, 2011 1:07 PM
Points: 52, Visits: 294

Thank You. Some what related question - if a windows ID (in sql server setup as windows authentication) has sysadmin authority and it is the owner of a database, when windows password changes, is there something that needs to be done in sql server. Database is not encrypted in this case.

Post #937150