John Dennis (6/2/2008)

---

As ALZDBA points out--It is better to create a windows account for the service to run under than NT Authority\SYSTEM. Granting permission to NT Authority\SYSTEM gives "any"...

If you're dealing with SQL Server 2005, then yes.

SELECT * FROM sys.endpoints

After that, you can view the various endpoint views. See the Books Online topic Endpoints Catalog views for the...

toparsi (6/2/2008)

---

Thanks a lot for al the suggestions. But my case all the databases are in simple recovery mode. So even if I trace it, it is difficult. Though I...

You can run

EXEC sp_helprotect @username = 'sysadmin';

It won't pick up SQL Server 2005 securables (server, schema), but it will pick up denies against explicit tables, etc.

Yes just add the System account back. It minimizes the number of accounts with access, especially with sysadmin access.

Jorge Novo (6/2/2008)

---

Going forward, we kind of loose track of the actual question for the post. In conclusion:

1. A sql trace or profiler can be use to track what is...

Add NT Authority\SYSTEM and grant it the appropriate rights. You probably have netbackup or the like running its agent service as the local system account. That is preferable to re-adding...

Actually, I've seen promotions and salary increases because I am a "utility" guy...

Members of the sysadmin fixed server role should be bypassing security checks, but check to see if there has been any denies leveled against the sysadmin fixed server role.

Altiris and System Center can certainly output the OS information and possibly the server-level SQL Server information, but neither are cheap and require a license per server in addition to...

Steve's advice tells you how to determine who is a member of a particular role. If you have servers connecting in directly, you'll see their logins in Domain\ComputerName$. If you...

Without having a DDL trigger in place or having an active server trace going at the time, you probably won't be able to determine exactly when and by whom. The...

Take a look at the following blog post:

Disaster Recovery: What to do when the SA account password is lost in SQL Server 2005

Because you're dealing with a cluster, getting SQL...

I don't disagree that typically a user wouldn't resort to this, however, if you want something iron clad, this isn't the way to go. For instance, it would likely not...

Well, let me ask what may be a dumb question... Are you sure the child tables can't be combined in some way? Maybe even with the parent table? It sounds...