SQL Clone
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


SQL Server 2005 Logins


SQL Server 2005 Logins

Author
Message
K. Brian Kelley
K. Brian Kelley
Keeper of the Duck
Keeper of the Duck (24K reputation)

Group: Moderators
Points: 24702 Visits: 1917
Comments posted to this topic are about the content posted at http://www.sqlservercentral.com/columnists/bkelley/sqlserver2005logins.asp

K. Brian Kelley
@‌kbriankelley
Frank Buchan
Frank Buchan
SSC Veteran
SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)SSC Veteran (297 reputation)

Group: General Forum Members
Points: 297 Visits: 33
I hope one of the series of articles deals with the horrifying interface mess in SQL Studio and how it affects security. While I think SQL Server 2005 did enhance security, the way it makes one manage it is a step backward, and makes me wonder if a lot of "default" security will become the normal because of how overly complicated the interface can be.
K. Brian Kelley
K. Brian Kelley
Keeper of the Duck
Keeper of the Duck (24K reputation)

Group: Moderators
Points: 24702 Visits: 1917
I can look at doing that. I prefer to manage the security on my servers through the T-SQL instead of through the SSMS interface, but you make a good point.

K. Brian Kelley
@‌kbriankelley
Yelena Varshal
Yelena Varshal
SSCrazy Eights
SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)SSCrazy Eights (8.9K reputation)

Group: General Forum Members
Points: 8898 Visits: 600

Brian,

Great Article, good examples. I like a lot that it points out differences between 7/2000 and 2005.

As a comment, there was probably one typo:

"............In order to turn on policy checking and password expiration, additional options must be specified. Those additional options are:

  • SID = SID
  • DEFAULT_DATABASE = default database
  • DEFAULT_LANGUAGE = default language
  • CHECK_EXPIRATION = { ON | OFF}
  • CHECK_POLICY = { ON | OFF}
  • CREDENTIAL = credential name

................"

I think you meant to say that in order to turn on policy checking and password expiration SOME of the additional options should be specified. Please, correct me if I am not right and ALL of the above options should be specified for pasword expiration check.




Regards,
Yelena Varshal

K. Brian Kelley
K. Brian Kelley
Keeper of the Duck
Keeper of the Duck (24K reputation)

Group: Moderators
Points: 24702 Visits: 1917
No, you are most certainly right. Good catch. I had a couple of guys around the office proofread and none of saw that.

K. Brian Kelley
@‌kbriankelley
Dave Poole
Dave Poole
SSCoach
SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)SSCoach (16K reputation)

Group: General Forum Members
Points: 16676 Visits: 3403
Hope the article on Symetric Keys and Certificates comes soon!

LinkedIn Profile
www.simple-talk.com
K. Brian Kelley
K. Brian Kelley
Keeper of the Duck
Keeper of the Duck (24K reputation)

Group: Moderators
Points: 24702 Visits: 1917
What I'm thinking of is I'm going to do the database users article, a primer on crypto (what a DBA needs to know), and then go into the encryption within SQL Server 2005. How does that sound?

K. Brian Kelley
@‌kbriankelley
tejas parikh
tejas parikh
SSC-Enthusiastic
SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)SSC-Enthusiastic (169 reputation)

Group: General Forum Members
Points: 169 Visits: 109

I actually have a question regarding a similar issue. I'm trying to migrate from SQL 2000 to SQL 2005. I need to migrate my windows Logins and SQL logins to SQL 2005 server. I wrote a script to get my SQL logins with their SID's over to SQL 2005 box. Can I also migrate their passwords???

Also, for Windows logins, if I'm trying to migrate them, do I need to care about their SID's? Thank you

Tej


SuzSQL
SuzSQL
Mr or Mrs. 500
Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)Mr or Mrs. 500 (504 reputation)

Group: General Forum Members
Points: 504 Visits: 299

Question?

If I disable a Windows login in SQL Server and I happen to have domain admin permissions, does this disable the login on the domain? I tried to disable a group of windows logins in sql and I got permission denied. I am not an admin in the domain which is why I imagine this happened.

This is scary functionality especially if the windows ids and groups are used beyond SQL.

Susan





Bhushan Kalla
Bhushan Kalla
Old Hand
Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)Old Hand (361 reputation)

Group: General Forum Members
Points: 361 Visits: 71

It's really awesome article for the beginners in SQL Server 2005 security.

Bhushan


Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum

































































































































































SQLServerCentral


Search