Re: Minimum permissions for Backup/Restore
- From: "Uri Dimant" <urid@xxxxxxxxxxx>
- Date: Sun, 3 Aug 2008 10:06:03 +0300
Brian
What account ExpressMaint.exe runs under? BUILTIN\Administrators ?
"Brian" <a@xxxxx> wrote in message
news:e1Y38EM9IHA.4092@xxxxxxxxxxxxxxxxxxxxxxx
I'm fairly new to SQLServer security and I'm finding that once someone has
access to the physical file it seems to be very difficult to prevent them
from making updates.
I used to use Access and with that I was able to secure the database and
set the permissions to their user so even though the file can be copied
they could not inadvertantly update the rows. Of course backup/restore
was external to Access.
I am using SQLExpress on standalone laptops and I would like to prevent
users from accidentally modifying rows if they happen to view the tables
in management studio which they use to backup/restore and do some queries.
I thought of removing the permissions for BUILTIN\Administrators and
BUILTIN\Users and creating one sqllogin with dbdatareader permissions and
a special sqllogin Backupuser with dbcreator and dbbacupoperator
permissions and dbdenydatawriter but then I run into a problem when I try
to schedule backups using ExpressMaint.exe
Can someone point me in the right direction or is what I need to do not
possible?
Thanks
Brian
.
- Follow-Ups:
- Re: Minimum permissions for Backup/Restore
- From: Brian
- Re: Minimum permissions for Backup/Restore
- References:
- Minimum permissions for Backup/Restore
- From: Brian
- Minimum permissions for Backup/Restore
- Prev by Date: Re: How to protect SQL Server Express database from reverse engineerin
- Next by Date: Re: Minimum permissions for Backup/Restore
- Previous by thread: Minimum permissions for Backup/Restore
- Next by thread: Re: Minimum permissions for Backup/Restore
- Index(es):
Relevant Pages
|
