This short script will list all the users along with their Roles.  Read more...

Read more...

This script is for the Generating a code block that makes it easier to grant various permissions on a group of objects qualified by specific Criteria.   Read more...

Generates a list of ALL Users and their database Roles for all Databases (Or for a specific user).  Read more...

Scripts permissions/roles for db user across all databases.  Read more...

check public access to extended stored procedures  Read more...

These scripts give you the list of logins created in the Last X Days for SQL Server 2000 or 2005.  Read more...

Check Orphaned logins ie, not associated with any database on the current instance.  Read more...

Creates statements for securables creation.  Read more...

Creates statements for securables creation.  Read more...

Learn how to set up delegation on your SQL Server instances, so you can use the impersonate options when setting up the security properties of linked server definitions.  Read more...

Part 3 of Steve Jones' series on beginning SQL Server from the perspective of a system administrator or someone not used to working with SQL Server. If you've been designated the new administrator, take a look at this series for some help in coming up to speed on this product. This article looks at logins and basic security.   Read more...

As yo probably know, Brian covers security topics for us and does a great job. This week he looks at the fixed roles and points out a few things you may not have thought about.   Read more...

SQL Server includes a great auditing tool: Profiler. It's not the easiest tool to use, however, and it's one that takes some getting used to. Our resident security export, Brian Kelley looks at a simple example of using this tool to audit logins.   Read more...

EFS provides a mechanism for encrypting files completely transparent to higher level applications such as SQL Server. In this article by Brian Kelley, he shows you how to implement this type of security in your environment.   Read more...

Service Pack 3 for SQL Server 2000 is huge. There are significant changes in it and they apply to all three products: the core SQL Server, MSDE, and Analysis Services. Because there are so many changes, this first article in the series will only focus on the security changes.   Read more...

In part one Chris Kempster covered a variety of security recommendations primarily for production systems. In Part two of this series he continues to explore security at a variety of levels where you may not realize you are vulnerable.   Read more...

Auditing, analyzing and documenting your SQL Server installation is becoming more important all the time, especially as more and more attention is being paid to the security of your environment. Chad Miller brings us a look at a framework and a sample document you can use in your environment to conduct an audit.   Read more...

Do you know the difference between a login and a user? What's the best way to add them; Enterprise Manager, T-SQL, or SQL-DMO? In this beginner level article Andy demonstrates how to use all three methods to add logins and users and offers his view of which is the best technique.   Read more...

As a DBA you do not need to know how to setup an Active Directory domain or a DNS server, but you still need to know how Kerberos, Service Principle Names, and hostnames are used to perform integrated authentication to a SQL Server. This article by new columnist Chad Miller shows you some of the more integral parts of troubleshooting running Windows Authentication security in a SQL Server environmnet.   Read more...