March 5, 2014 at 12:40 pm
Hello ! I understand that isolating services reduces the risk that one compromised service can be used to compromise others.
How about when you manage multiple sql servers? Is there a best practise, i.e. SQl server service accounts per service/per environment etc?
Thanks!
Paula
March 5, 2014 at 5:49 pm
the prevailing wisdom is to use a separate service account for each server with the minimum permissions required to run the service.
March 6, 2014 at 9:38 am
paulaalkz 9229 (3/5/2014)
Hello ! I understand that isolating services reduces the risk that one compromised service can be used to compromise others.How about when you manage multiple sql servers? Is there a best practise, i.e. SQl server service accounts per service/per environment etc?
Thanks!
Paula
There is always a trade-off. SQL server service accounts per environment is less secure but easy to manage. SQl server service accounts per service is more secure and managing is not that easy. Also depends on how big and complex the environment is. Obviously best practise, is SQL server service accounts per service.
--
SQLBuddy
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply