Re: prevent domain admins from access to sql 2000 service without denying them access to the machine
- From: "Jens" <Jens@xxxxxxxxxxxxxxxx>
- Date: 1 Feb 2007 12:43:40 -0800
Hi,
well this would assume some requirements:
-the default administrators group has to be removed from the sysadmin
role in SQL Server.
-you will have to make sure that they will not reset the password of
the user who will be a sysadmin on the SQL Server for getting into the
system.
YOu will have to keep in mind, that this will not prevent them from
stopping the service, copying the database files somewhere and
attaching them to another server where they have full control of. So
it would be better to use a more restrict file security on the server
and the paths of the database files itself. But, as they are sysadmins
they will probably have the access to the paths, so you will be outta
luck here.
HTH, Jens K. Suessmeyer.
---
http://www.sqlserver2005.de
---
.
- References:
- Prev by Date: prevent domain admins from access to sql 2000 service without denying them access to the machine
- Next by Date: Re: problems setting up Application Role in SQL 2005
- Previous by thread: prevent domain admins from access to sql 2000 service without denying them access to the machine
- Index(es):
Relevant Pages
|
