| Author |
Topic |
|
Abid
110 Posts |
 Posted - 2011-04-27 : 03:18:28
|
| hi, i made a project using VISUAL STUDIO 2005 PROFESSIONAL and SQL SERVER 2005. my project is completed and has to deliver now. but i got a problem. the problem is that i worked on SQL SERVER AUTHENTICATION level, means that security level right. But instead of this any one can connect to SQL SERVER using Windows authentication mode and can delete or change my databse or tables. so how i solve this problem. |
|
|
raghuveer125
Constraint Violating Yak Guru
285 Posts |
|
|
lionofdezert
Aged Yak Warrior
885 Posts |
Posted - 2011-04-27 : 03:28:31
|
| But still you can disable any unwanted user and it will be no longer able to connect to server.--------------------------http://connectsql.blogspot.com/ |
 |
|
|
Abid
110 Posts |
|
|
raghuveer125
Constraint Violating Yak Guru
285 Posts |
Posted - 2011-04-27 : 04:00:36
|
| You cant disable Windows authentication.Windows Authentication is the most secure way to login in system.Raghu' S |
|
|
|
Abid
110 Posts |
Posted - 2011-04-28 : 01:36:10
|
quote:
Originally posted by raghuveer125
You cant disable Windows authentication.Windows Authentication is the most secure way to login in system.Raghu' S
yes i cant disable, but then it means that i will let the others to enter into my database and do delete the table or the entire database? do i let anyone? |
|
|
|
raghuveer125
Constraint Violating Yak Guru
285 Posts |
Posted - 2011-04-28 : 01:56:44
|
| See you should not have to share your Administrator or SA password with other people. If you need to give other user to read database then create separate user and give what permission you want give.Raghu' S |
|
|
|
Abid
110 Posts |
Posted - 2011-04-28 : 04:49:42
|
| you are right, but you know that if you dont know that sa password, so anyone can connect to SQL SERVER through Windows authentication mode right. ok if someone connected by this way so you also know that he or she can modify anything in your database right? so what i do now? |
|
|
|
Abid
110 Posts |
Posted - 2011-05-05 : 14:43:16
|
| hi moderator(s), please if you can so answer my question please i need it. |
|
|
|
robvolk
Most Valuable Yak
15732 Posts |
Posted - 2011-05-05 : 14:51:33
|
quote:
so anyone can connect to SQL SERVER through Windows authentication mode right
No. No one has any built-in rights to connect to your SQL Server. The only exception is the BUILTIN\Administrators group, which allows access to members of the servers local Administrators group. If you remove this group from SQL Server (recommended practice) then even those users cannot access your SQL Server unless you grant them explicitly.Best thing to do is open the Security tab on your SQL Server and look under Logins. Research all the names you find under there, and if you can't determine who they are or whether they need SQL access, disable or remove that login. |
|
|
|
Jahanzaib
Posting Yak Master
115 Posts |
Posted - 2011-05-06 : 07:09:32
|
| if you dont want to access with windows Authentication to the database then you can restrict BUILT-IN\ADMINISTRATOR user,it will restrict all local or domain administrator on the SQL ServerRegards,Syed Jahanzaib Bin HassanMCTS,MCITP,OCA,OCP,OCE,SCJP,IBMCDBAMy Blogwww.aureus-salah.com |
|
|
|
Abid
110 Posts |
Posted - 2011-05-08 : 23:39:32
|
quote:
Originally posted by Jahanzaib
if you dont want to access with windows Authentication to the database then you can restrict BUILT-IN\ADMINISTRATOR user,it will restrict all local or domain administrator on the SQL ServerRegards,Syed Jahanzaib Bin HassanMCTS,MCITP,OCA,OCP,OCE,SCJP,IBMCDBAMy Blogwww.aureus-salah.com
thank you jahanzaib bhai. boht boht shukrya. i haven't try this yet. i'll check it and post my answer here. and hope that you will further assist me  |
|
|
|
Abid
110 Posts |
Posted - 2011-05-28 : 13:11:47
|
quote:
Originally posted by Jahanzaib
if you dont want to access with windows Authentication to the database then you can restrict BUILT-IN\ADMINISTRATOR user,it will restrict all local or domain administrator on the SQL ServerRegards,Syed Jahanzaib Bin HassanMCTS,MCITP,OCA,OCP,OCE,SCJP,IBMCDBAMy Blogwww.aureus-salah.com
HI jehanzeb, today i am here to ask you that how do i restrict them now? please assist me that i could do it finally? |
|
|
|
GilaMonster
Master Smack Fu Yak Hacker
4507 Posts |
Posted - 2011-05-28 : 13:48:25
|
| If you remove all windows logins from the logins list, the no one will be able to log in using windows authentication. Just make sure you have a sysadmin account with a known password before you do that.--Gail ShawSQL Server MVP |
|
|
|
Abid
110 Posts |
Posted - 2011-05-30 : 01:24:33
|
quote:
Originally posted by GilaMonster
If you remove all windows logins from the logins list, the no one will be able to log in using windows authentication. Just make sure you have a sysadmin account with a known password before you do that.--Gail ShawSQL Server MVP
yes sir, i have sa login and password. But sir please tell me that by doing this, will it have some bad affects on my database, i mean will i loose something after removing that list, or will it affect my system or database in any side? |
|
|
|
dujiaojing0
Starting Member
12 Posts |
Posted - 2011-06-02 : 06:51:02
|
| Why not set a password for your windows?---------------------------http://www.mssqlpasswordrecovery.com |
|
|
|
raghuveer125
Constraint Violating Yak Guru
285 Posts |
Posted - 2011-06-02 : 07:11:49
|
| Ok finally here is solution open your SSMS in object explorer expand your instance(If it is default instance then it display your system name you can get your system name by right clicking my computer click properties and next click "computer name" tab);next expand security; next expand logins and delete login name Like "YoureComputerName\Administrator" and if any windows user you don't want you can delete.Note:before you do that you should have remember sa password or any sysadmin password otherwise you will lost everything.In Love... With Me! |
|
|
|
Abid
110 Posts |
Posted - 2011-06-02 : 09:04:20
|
quote:
Originally posted by raghuveer125
Ok finally here is solution open your SSMS in object explorer expand your instance(If it is default instance then it display your system name you can get your system name by right clicking my computer click properties and next click "computer name" tab);next expand security; next expand logins and delete login name Like "YoureComputerName\Administrator" and if any windows user you don't want you can delete.Note:before you do that you should have remember sa password or any sysadmin password otherwise you will lost everything.In Love... With Me!
Would you please explain sir, that i will loose everything, what does this mean?and the other thing is that before doing this i would like to ask that sir after doing this will it affect my system, or my SQL SERVER, oor will anything will be damaged in my system by deleting this user list? |
|
|
|
raghuveer125
Constraint Violating Yak Guru
285 Posts |
Posted - 2011-06-08 : 08:06:42
|
quote:
Originally posted by Abid
quote:
Originally posted by raghuveer125
Ok finally here is solution open your SSMS in object explorer expand your instance(If it is default instance then it display your system name you can get your system name by right clicking my computer click properties and next click "computer name" tab);next expand security; next expand logins and delete login name Like "YoureComputerName\Administrator" and if any windows user you don't want you can delete.Note:before you do that you should have remember sa password or any sysadmin password otherwise you will lost everything.In Love... With Me!
Would you please explain sir, that i will loose everything, what does this mean?and the other thing is that before doing this i would like to ask that sir after doing this will it affect my system, or my SQL SERVER, oor will anything will be damaged in my system by deleting this user list?
No nothing will happened but if you don't have sa or sysadmin account password then you are not able to change mssqlserver instance level settings.In Love... With Me! |
|
|
|
|
how to protect my DATABASE from unauthorized prsns