Post reply

Policy Based Management: Public Not Granted Server Permissions

  • February 8, 2012 at 9:16 am

    #391513

    Hi,

    I have implemented the policy "Public Not Granted Server Permissions" in one of our server from Microsoft best practice policy. It says "Do not grant server permissions to the server public role."

    While evaluation this policy fails and I wanted to remove public role from the logins. But I cannot do this. Could you please let me know how to pass this?

    The link for the policy

    http://technet.microsoft.com/en-us/library/cc645930.aspx

    Ryan
    //All our dreams can come true, if we have the courage to pursue them//

  • February 8, 2012 at 10:09 am

    #1444647

    you cannot remove the public role, it's built in and required. everyone is part of the public role.

    http://www.databasejournal.com/features/mssql/article.php/1478701/SQL-Permissions-The-Public-Role.htm

    what you can do is never grant any permissions to that role. so you never grant things like VIEW ANY DATABASE TO PUBLIC or anything like that.

    Lowell

    --help us help you! If you post a question, make sure you include a CREATE TABLE... statement and INSERT INTO... statement into that table to give the volunteers here representative data. with your description of the problem, we can provide a tested, verifiable solution to your question! asking the question the right way gets you a tested answer the fastest way possible!

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply