Results 1 to 3 of 3
  1. #1
    Join Date
    Sep 2003
    Location
    Toronto, Canada
    Posts
    30

    Cool Unanswered: SERVER 2000 AND BUILTIN\Administation

    Hello Y'all,
    I have just installed Server 2000 on Windows 3003 with the latest service pack and had no problems. All the other DBAs have admin password to the server. How can I improve the security that no one would be able to see the tables ?
    HELP !!!!!!!!

  2. #2
    Join Date
    Mar 2004
    Posts
    114

    Exclamation

    Which authentication mode are you using ?
    If you want to improve a SQL account, you have to swith to mixt mode (must restart service after changing mode).

    If you don't want system or domain Administrators to access your db, remove BUILTIN\Admin.

    But be sure of what you do ! You do it at your own risk ! You'll be prevented !

  3. #3
    Join Date
    Sep 2003
    Location
    KY
    Posts
    146

    Hi

    Builtin\Administrators is added automatically once you have completed installation. However, you may not want every person who is local Admin on OS level to be System Admin on SQL Server. In order to avoid that. Have atleast one NT Account added as login to SQL and make it an SA on SQL and then remove Built-in Adimns.

    remember that if your SQl Services are running under Local system account, removing Builtin \ Administrators will prevent SQL Server from Starting.

    Better way to do this is to run SQL Server under a Domain user account if possible or a local user account (with rights to Logon as a Service, doesn't have to be administrator on OS level)
    Add another Nt account (local admin) and make him an SA (that would be for your use) and ten remove Builtin\Admin safely .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •