Identifying PII Data to Lock Down in SQL Server - Part 1

We're pretty confident that we have locked down and encrypted our financial data, but a lot of our customer's PII (Personally Identifiable Information) data is still held in unencrypted form. This data is able to be selected directly by read only business users on many of our downstream reporting, datawarehouse and standby servers. The rise of identity theft makes protecting this data imperative. DBAs are the custodians of this information and must protect it like we protect our own personal information. Recent publicity over the theft of Sony PSN data underscores both the economic and ethical importance of protecting personal data.

SQL Server Service Broker Security

Arshad Ali examines the different types and different layers of security that SQL Server Service Broker provides during communication and while accessing Service Broker objects.

Why System Account is a bad idea for SQL Server Service Account

I'm trying to set up SQL Server and I know that I'm not supposed to use an account that's an administrator on the system, as per best practices. I see that the System account is a possibility, but I've been advised not to use it. Why not? Check out this tip to learn more.

Enabling TDE

Query Active Directory to Display Login Information

Query Active Directory to get information on user logins.

Show SQL authentication login information

View login information for all accounts that use SQL authentication.

Login Properties

Create Database User

This script is used for drop and create a new or existing user. IF User is already exists in database then first it will dropped and then recreate.

Running SSMS after AD account is disabled

Security Audit Db_DataReader

Uses sp_MsForEachDb, locates members in db_datareader with permissions other than Select and Connect.