September 18, 2014 at 3:21 pm
Hi
I would like to know, from your experience, what are the pros and cons of enabling the sa account in SQL Server 2012 that resides in Windows Azure. According to my reading on security considerations the sa account should not be enabled. What has been your experience?
Thanks
Kathy
September 18, 2014 at 4:40 pm
Pros: None
Cons: It's a known sysadmin account, so a hacker target
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
September 19, 2014 at 11:14 am
So if you need an sa type account do you just rename it or do you use all windows authentication?
September 19, 2014 at 3:50 pm
Disable the sa account and leave it disabled.
For an admin account, create your own, windows authent or SQL authent, strong passwords, password policy, all the usual security steps
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
September 22, 2014 at 7:52 am
When I look at the Login Properties--Securables of a login I see the permission of 'Connect SQL' and grant is checked and the Grantor is 'sa'--even though I have the sa account disabled now. Is this safe or can you direct me to a web site to change this if I need to?
Thanks
Kathy
September 22, 2014 at 7:54 am
Nothing wrong with a disabled login owning objects or being the grantor of rights.
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability
September 23, 2014 at 7:21 pm
Thanks Gail
Viewing 7 posts - 1 through 6 (of 6 total)
You must be logged in to reply to this topic. Login to reply