Results 1 to 5 of 5
  1. #1
    Join Date
    Oct 2004
    Posts
    91

    Unanswered: customer wants to remove power user (was "Need some advise")

    Hi everyone,

    I have a customer that wants to remove a power user
    from her company.

    She has given him the SA password (against my advise)
    and he has his own user account setup in the database.


    I am not sure if he has created any backdoor(s) into the
    SQL box or not - I left him kinda on his own and didn't
    pay too much attention to him.

    I assume people have faced this problem before,
    and i am looking for a best practices or "here is what we did"
    post mortem of how they handled the issue.

    thanks
    tony

  2. #2
    Join Date
    Feb 2004
    Location
    One Flump in One Place
    Posts
    14,912
    Change the sa password (you have no apps accessing via sa right)?

    Check all the high permissions roles (sysadmins, securityadmins etc) and account for all the logins associated with them. Be very suspicious of any that are not domain accounts.

    That would do for starters.

    Future ref - always give permissions like that to domain accounts not SQL ones.
    Testimonial:
    pootle flump
    ur codings are working excelent.

  3. #3
    Join Date
    Jan 2003
    Location
    Massachusetts
    Posts
    5,800
    Provided Answers: 11
    The Flump speaks wisdom.

    Also check for any new SQL Agent jobs.

  4. #4
    Join Date
    Oct 2004
    Posts
    91
    Thanks for the info -

    Agent jobs was checked and double checked.

    Also did a grep on the stored procs for any create users references

    I am going to make a backup of the database and restore it
    into a virtual machine, change the SA and the users password
    without deleting the user.

    I will leave the server running for a day or so looking for issues before the production server is touched.

    Thanks again for ALL the hep!

    take care
    tony

  5. #5
    Join Date
    Jan 2007
    Location
    UK
    Posts
    11,434
    Provided Answers: 10
    Quote Originally Posted by MCrowley
    The Flump speaks wisdom.
    Shouldn't this already be in his sig by now?
    George
    Home | Blog

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •