March 4, 2019 at 1:15 pm
I am trying to find all new SQL Servers and DBs being created and grant appropriate access.Very often we learn about these too late when the programmers are ready to deploy.
I know there are different ways, whenever there is a new database gets created we can configure to get alerted by creating server level triggers something like that.
However, would there a better way to identify whenever there is a new SQL Servers are created in the network?
Thanks
March 4, 2019 at 1:43 pm
You are having an issue where the developers have rights to create a new SQL Server in your environment?
Is this a physical, or virtual environment?
If they have rights to spin up new VM's, then maybe the issue is not one to find out when it occurs, but preventing it from happening without going through a well defined change process.
Is there a development server? Do the devs create new databases on a single (or a few) servers? That's easy to test and notify one. A server level trigger will work.
As far as creating new servers, that sounds more like a management issue.
Michael L John
If you assassinate a DBA, would you pull a trigger?
To properly post on a forum:
http://www.sqlservercentral.com/articles/61537/
March 4, 2019 at 7:03 pm
If people have local admin rights on their machine, their is nothing that will prevent them to create a local SQL Server not accessible from the network. You would need some sort of GPO to prevent the installation and send a report to the IT team.
In my opinion, this is beyond SQL Server and the business should bring governance around the data management systems . However if you want to have a bit more control on what it is being done on those SQL Servers then you should look at SQL Policy-Based Management (PBM) to do compliance checks
March 6, 2019 at 10:46 am
I am trying to implement a better process when the new SQL Server is built in the network then i should get notified? Something like sql server inventory. Other than PowerShell do you recommend any other option?
However, once i get the notification about server inventory, then creating server level trigger would help me whenever new database or user get added right?
Thanks
March 6, 2019 at 1:29 pm
Admingod - Monday, March 4, 2019 1:15 PMI am trying to find all new SQL Servers and DBs being created and grant appropriate access.Very often we learn about these too late when the programmers are ready to deploy.
I know there are different ways, whenever there is a new database gets created we can configure to get alerted by creating server level triggers something like that.
However, would there a better way to identify whenever there is a new SQL Servers are created in the network?Thanks
To find new SQL Server instances on the network, I periodically use the free Idera tool SQL Instance Check:
https://www.idera.com/productssolutions/freetools/sql-instance-check
This tool will discover all SQL Server instances within an IP address range and version information about them. Great for finding out of date servers that are behind on patches too.
Viewing 5 posts - 1 through 4 (of 4 total)
You must be logged in to reply to this topic. Login to reply