What role do you need to install security updates?

  • Supposed I am using an account in the BUILT-IN\Administrators group. That account has no explicit role defined in SQL Server.

    If I want to give that account enough privilege to install security updates, do I need to give that account sysadmin role as well?

  • Check out this document:http://technet.microsoft.com/en-us/library/dd638062(v=sql.100).aspx

    but this is the quote you are looking for:

    SQL Server 2008 updates must be installed under an account that has administrative privileges on the computer where they will be installed.



    Microsoft Certified Master - SQL Server 2008
    Follow me on twitter: @keith_tate

    Forum Etiquette: How to post data/code on a forum to get the best help[/url]

  • To clarify what Keith is saying: to install security updates, you don't need any permissions in SQL Server at all, only in Windows.

    [font="Times New Roman"]Erland Sommarskog, SQL Server MVP, www.sommarskog.se[/font]

  • If you start talking about SQL Server Service Packs, Cumulative Updates and Hotfixes, then you need authorities in both Windows and SQL Server. This also applies to Security Updates that affect SQL Server - fortunately on average we only get one of these each year as most Security Updates do not affect SQL Server.

    However, most sites will apply SQL Server updates separately to Windows updates and often use a different account for each type of update. It is considered best practice to run these types of update separately.

    Original author: https://github.com/SQL-FineBuild/Common/wiki/ 1-click install and best practice configuration of SQL Server 2019, 2017 2016, 2014, 2012, 2008 R2, 2008 and 2005.

    When I give food to the poor they call me a saint. When I ask why they are poor they call me a communist - Archbishop Hélder Câmara

Viewing 4 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic. Login to reply