January 25, 2007 at 10:04 am
Hi All,
I am about to install a SQL 2000 database platform, my concerns are as follows, some non SA users do need to access the server to edit certain files, the login the users use to connect to the server has Administrator
Rights, besides the SQL installation Local administrators group also contains the login the users are using to access the server, I was wondering if there was a setting that can be used to solve this problem, or what the situation is in the company you guys work for?
i.e do you have situations in which users need to log into a Windows server installation via remote desktop connection, and the server also being a SQL database server…
I look forward to hearing from you.
January 25, 2007 at 10:28 am
It is still a tricky matter since administrator's can do everything. (shutting down service,...)
My current solution:
*Sqlserver run under an administrator account "blabla" different than "administrator"
*Blabla added it to the sql server systemadministrator
*Changed sql server service account to "blabla"
*Test
*Removed builtin\administrators from sysadmins
*Denied remote desktop for "blabla", can be renabled using another account when necessary.
Viewing 2 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply