 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
SQL Server Forum / General / Security / July 2005User rights and SOX
First question: I have a user that is admin on the server to perform security patches and general server maint. He is also a user in SQL. Since he is the Admin of the box he has also inherited Admin rights to SQL. I want him to have only "select,insert,update and delete" rights to all tables but no other rights in SQL. Is this possible? 2nd question: Has anyone out there needed to separate SQL functions for SOX? If so can you please give me some ideas of how you separated SA and DBO functions? SA(insert, update, delete) DBO (create tables,give user rights etc..) Thanks, Joe 1. Remove the BUILTIN\administrators group from SQL Server logins. The admins then don't have any access. Then add the specific user with only the permissions they need. 2. Don't use the SA account. Change it's password to something very difficult and lock it away in a safe. Regards -------------------------------- Mike Epprecht, Microsoft SQL Server MVP Zurich, Switzerland MVP Program: http://www.microsoft.com/mvp Blog: http://www.msmvps.com/epprecht/ > First question: > I have a user that is admin on the server to perform security patches and [quoted text clipped - 11 lines] > Thanks, > Joe Thank you! Good Idea... I didnt know if I was able to do that. Thanks again, joe > 1. Remove the BUILTIN\administrators group from SQL Server logins. The admins > then don't have any access. Then add the specific user with only the [quoted text clipped - 27 lines] > > Thanks, > > Joe |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2010 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.