security admin vs admin

  • what can sql server admin (SA) do and sql server security admin cannot do when it comes to handling the SECURITY ???

    I know there are possibly many other things that the admin can do (sa) and others cannot. I just want to see the difference or the deta in the security realm..

    does this make sense??

    thx

    John Esraelo

    Cheers,
    John Esraelo

  • SecurityAdmin cannot grant rights to himself/herself.

    SecurityAdmin cannot enter into a database unless specifically granted permission.

    SecurityAdmin can't add anyone to the SysAdmin role.

    SecurityAdmin can't reset the password of anyone in the SysAdmin role.

    SysAdmin goes into every database as dbo. It bypasses all security permissions. SecurityAdmin goes into databases it is permitted in the context of the mapped user.

    K. Brian Kelley
    @kbriankelley

  • perfect, thx

    John Esraelo

    Cheers,
    John Esraelo

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply