BUILTIN\Administrators help
From: CMLC (anonymous_at_discussions.microsoft.com)
Date: 09/24/04
- Next message: rbennata: "Fine grained permissions control in SQL 2005"
- Previous message: Dan Guzman: "Re: managing msde with nt authentication"
- In reply to: Josephine: "BUILTIN\Administrators help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 24 Sep 2004 04:05:43 -0700
My suggestion:
1.Remove the login BUILTIN\Administrators from SQL Server.
2.Assign a specified account or NT Group (ex: DBAAdmins)
dba rights on the SQL Server.
Attentions:
-All the connections to SQL Server should be mapped to a
specified account with login rights.
-The services should start using an account other than
Local System Account, because this account is mapped to
the login BUILTIN\Administrators.
This will make your SQL Server more secure, in my
opinion :)
See topics in BOL about "Removing BUILIN\Administrators"
Hope this helps
Regards,
CMLC
>-----Original Message-----
>In an environment using mixed mode, and domain admins
have
>local administrator rights on servers, and it's a domain
>admin that administers all the SQL, can we put any
>restrictions on the BUILTIN\Administrators. What are the
>best restrictions, or what would you recommend?
>Thanks for help,
>Josie
>.
>
- Next message: rbennata: "Fine grained permissions control in SQL 2005"
- Previous message: Dan Guzman: "Re: managing msde with nt authentication"
- In reply to: Josephine: "BUILTIN\Administrators help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
