Post reply

ALTER ANY CREDENTIAL Permission

  • July 17, 2019 at 10:58 pm

    #3663949

    We are implementing a password management system to automate the resetting of passwords at regular intervals.

    We want this system to update passwords saved in the Credentials Node when the passwords are reset in AD.  We're not going to put the password management account in the sysadmin role, and we're reluctant to put it in the security admin role.

    If we were to grant ALTER ANY CREDENTIAL to the password management account, are there security implications beyond it having the ability to run ALTER CREDENTIAL commands?

  • July 18, 2019 at 11:10 pm

    #3664358

    Thanks for posting your issue and hopefully someone will answer soon.

    This is an automated bump to increase visibility of your question.

Viewing 2 posts - 1 through 1 (of 1 total)

You must be logged in to reply to this topic. Login to reply