April 18, 2019 at 11:34 am
If a Junior Developer whom you have not met before, submits a request for DBO permissions on a production system. What are the idol steps should be completed?
April 18, 2019 at 11:40 am
I'd start by asking why he needs it. In an ideal world, developers wouldn't have any access to live systems, and certainly not elevated permissions like he's asking for.
John
April 18, 2019 at 11:55 am
I'd start by asking why he needs it. In an ideal world, developers wouldn't have any access to live systems, and certainly not elevated permissions like he's asking for. John
+1.
This very much falls in line with the opinion/response I gave you in your other question accidentally dropping production. Developers are very unlikely to need to be able to do anything and everything in a production database; especially a Junior Developer. If they really need to be doing something above their permissions, they should be escalating the request upwards though the correct channels (that your business will already have documented) and getting someone who can perform the action to do so.
Thom~
Excuse my typos and sometimes awful grammar. My fingers work faster than my brain does.
Larnu.uk
April 18, 2019 at 1:12 pm
There was a time when my primary concern on something like this would be simple worries about whether or not the junior (or senior, or mid-range) developer should be on production in the first place because of dropped tables, etc.. However, the more I know about privacy and compliance from HIPAA, PCI, GDPR, CPPA, FERPA, WPA, and SOX, the more I'm very comfortable in denying that access based purely on business needs. The whole technical aspect of the problem, which has always been a concern of mine, is completely subsumed by the compliance issues.
NO. You don't get access to production and the business is going to back me up on it (probably, at least after they get their first GDPR fine).
"The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood"
- Theodore Roosevelt
Author of:
SQL Server Execution Plans
SQL Server Query Performance Tuning
April 18, 2019 at 1:23 pm
Lordy... all these interview questions you're asking. And the word should be "ideal" and not "idol". 😉
The bottom line should be that NO ONE gets any privs to prod without going through proper channels. Since the Junior didn't go through the proper channels, you tell me what your answer should be. And, yeah... report the Junior's request to the proper chain of command.
--Jeff Moden
Change is inevitable... Change for the better is not.
April 18, 2019 at 1:28 pm
Lordy... all these interview questions you're asking. And the word should be "ideal" and not "idol". 😉
Perhaps the OP really does want to know the steps their idol would take in the event they're described. if so, the real question is, who is there idol? Let's just hope it isn't someone like one of the Kardashian's or a well known celebrity Chef, and instead a renowned (and respected) member of the SQL Server community. ??
Thom~
Excuse my typos and sometimes awful grammar. My fingers work faster than my brain does.
Larnu.uk
Viewing 6 posts - 1 through 5 (of 5 total)
You must be logged in to reply to this topic. Login to reply