November 16, 2010 at 8:47 am
Hi all
After my SQL 2008 install I noticeed I have 2 NT SERVICE\MSSQL$Instance and NT SERVICE\SQLAgent$instance accounts each with SA permissions.
I am a little confused about how the security model works in SQL 2008 compared to 2005 which was simple enough for me to understand, where the service accounts were added to dedicated groups, but these new accounts don't seem to be a member of any group.
Do these accounts map to the SQL Service accounts for SQL Server and SQL Agent? and also what permissions should these NT SERVICE accounts have?
Thanks
November 21, 2010 at 8:22 am
By default they won't be member of any group but both of them would have some permissions assigned in local group policy security settings, in case you want to use them.
By default they aren't given any access to SQL server. You'll need to manually do that. If you're
using Windows authentication mode or mixed mode, during installation it would prompt you to
use account which be used as service account for various SQL services(db service, agent service,
ssas service etc.)
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply