July 11, 2003 at 1:33 am
We have SQL2000 running on Windows2000 server. The administrator password for the OS is shared by multiple users (since we run a 24x7). Since the OS password is shared, users can have an access to the database through Enterprise Manager. All the database users use login and password assigned to individual users to access the database. My concern is that since the OS password is shared, can I implement a security option to disable the updating/inserting (basically data manupilation) on tables at the Enterprise Level. To make it more clear I want to avoid any user of the system (be a network or database) from changing the data in any manner by way of Enterprise Manager. It would be of a great help if somebody can tell me the steps to secure my database. I see a potential threat to the security at present.
Thanks in advance.
- Paramesh
July 11, 2003 at 1:51 am
The simplest action you can take is to remove the builtin/administrators, but make sure you're absolutely sure of the sa password before you do so. You can then restirct access to the SQL standard sa login.
Cheers,
- Mark
July 11, 2003 at 3:16 am
tks mccork for your prompt help, i did try the solution suggested. although it did work for the reason that i am not able to insert a new row, but i can edit the present data. that is any modification to the existing data is possible.
- Paramesh
July 11, 2003 at 4:08 am
How are you logged in during this scenario. What's the result when you run:
select suser_sname()
Cheers,
- Mark
July 11, 2003 at 7:49 am
You might also just replace the Builtin\administrators group with another of your own creation, such as domain\SQLAdmins, which has System Administrator rights on that SQL Server, then put the necessary SQL Admins in that domain group. You still want to know the SA PW, but this way you don't have to use it.
Chris
Doesn't know nuthin about nuthin, but don't tell nobody. 😉
Learning something new on every visit to SSC. Hoping to pass it on to someone else.
July 11, 2003 at 12:35 pm
This might be of some help:
http://www.sqlservercentral.com/columnists/bkelley/sqlserversecuritysecurityadmins.asp
K. Brian Kelley
http://www.truthsolutions.com/
Author: Start to Finish Guide to SQL Server Performance Monitoring
http://www.netimpress.com/shop/product.asp?ProductID=NI-SQL1
K. Brian Kelley
@kbriankelley
Viewing 6 posts - 1 through 5 (of 5 total)
You must be logged in to reply to this topic. Login to reply