I would like to know if we can create a separate group or what permissions on the server should be granted for the DBA to make sure he/she can perform the duties such as the ones listed below in case if we lock down local admin rights on the box due to management and security reasons.
- SQL database attach/detach
- SQL installation, service pack updates etc.
- Monitoring performance metrics
- restarting and stopping sql server