Please start any new threads on our new
site at https://forums.sqlteam.com. We've got lots of great SQL Server
experts to answer whatever question you can come up with.
| Author |
Topic |
|
ilir_
Starting Member
1 Post |
 Posted - 2002-12-07 : 09:59:03
|
Hi,Ok here is my questionfor exp.I have/want to setup two users (administrators), one for system admin (IT), and one for SQL admin, i want to restrict the system adminstrator (and others) to access the sql server, and make only sqladmin to have access to sql server. How can i do this??Thank youP.S. sorry for my bad english and i hope you can understand what my question is  |
|
|
Argyle
Yak Posting Veteran
53 Posts |
Posted - 2002-12-09 : 19:08:45
|
| The "easiest" way is to remove the BULTIN\Administrators account from the sysadmin role in sql server. That way NT administrators can't access your server. Only you who know the 'sa' password can access it. Not a good idea though to use the 'sa' password. Create a strong password on it and lock it away :)Instead create another account and add it to the sysadmin role of the sql server. This could either be a sql login or a windows login. Windows login is prefered but if you are paranoid and think your NT administrators will change the password on your Windows account and use it then use a sql login instead ;)------------BIG WARNING:------------Removing the BULTIN\Administrators account from SQL Server or lowering it's access rights could cause trouble depending on your system configuration. *** Before proceeding check out these articles ***INF: How to Impede Windows NT Administrators from Administering a Clustered SQL Serverhttp://support.microsoft.com/default.aspx?scid=KB;en-us;q263712PRB: SQL Server Agent Does Not Start and Displays Error 18456http://support.microsoft.com/default.aspx?scid=KB;en-us;q237604If you are unsure of the implications verify it on a test server before doing changes in a production environment./Argyle |
 |
|
|
|
|
|
Systemadmin and sqladmin