another possibility is to create the user with the "right" limited permissions, with the same password as 'sa' currently;
that should be easy to do , since everyone is logging in as SA, anyway, so everyone knows the password as it is.
After that is all set up then rename the 'sa' login, and then rename that new user to be 'sa';
an additional problem of course, if you need to upgrade to 2008, because i seem remember a thread Gail mentioned were in place upgrades fail on renamed sa, i think.
--help us help you! If you post a question, make sure you include a CREATE TABLE... statement and INSERT INTO... statement into that table to give the volunteers here representative data. with your description of the problem, we can provide a tested, verifiable solution to your question! asking the question the right way gets you a tested answer the fastest way possible!