Re: Split roles
From: Anthony Thomas (ALThomas_at_kc.rr.com)
Date: 10/02/05
- Previous message: Anthony Thomas: "Re: Changing credentials on-the-fly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 1 Oct 2005 17:44:29 -0500
In addition to what the other respondents have put forth, this will also be
determined by who has ultimate responsibility for the availability of the
data.
Yes, you can secure the SQL Server as system software; however, it is the
DBA who must monitor (Performance Counters), patch (Service Packs and hot
fixes), and provide for recoverability (Backup and Restore), most of which
will require the DBA to have local Administrator rights.
Usually, we have cooperation with our Server team, they maintain the Server
and OS, we maintain the DBMS, but we are both local Administrators. The
Server team members are Domain and/or Enterprise Administrators, the DBAs
are not. The DBAs are DBMS system administrators, the Server team is not.
It is at the server and OS level that we share responsibilities.
We have also found that many Server Administrators do not have the
experience nor skills to properly administrate a DBMS server. So, although
they do the hardware and OS level work, it is through the guidance of the
DBA group.
Sincerely,
Anthony Thomas
-- "Bad Beagle" <maxwelli@nospam.postalias> wrote in message news:O0w9QC4wFHA.3812@TK2MSFTNGP09.phx.gbl... Can someone please let me know what are the best practices for securing a sql server? The department is split - I have dba's and network analysts. The dba's are responsible for sql and the network analysts are responsible for the os. What rights are required for the service accounts? What rights does the dba need on the server to run Enterprise Manager?
- Previous message: Anthony Thomas: "Re: Changing credentials on-the-fly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
